Back to directory

WRITEUP #709

$7000 Bounty on a Single Web Application

RCEUnrestricted file uploadStored XSSReflected XSSAccount takeoverIDORLogic flaw

by@ImAyrix(Amir Abbas)

Bounty

7,000

Program

-

Published

Nov 1, 2023

Added to HackDex

Feb 6, 2024

Read Full Writeuphttps://blog.voorivex.team/7000-bounty-on-a-single-web-application

▸ RELATED WRITEUPS

Hitting the jackpot with RCE!

RCEUnrestricted file upload

Traccar 5 Remote Code Execution Vulnerabilities

RCEUnrestricted file upload

Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources

The Butterfly Effect: Turning Overlooked - Misconfigurations into Zero Click Account Takeover

Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat