Quartz 🪬
Search
Search
Dark mode
Light mode
Explorer
Home
❯
010 Fleeting
❯
Bug Reports
Folder: 010-Fleeting/Bug-Reports
12 items under this folder.
Nov 08, 2025
HackerOne
Aug 11, 2025
Traveling with OAuth - Account Takeover on Booking.com
oauth
write-up
evergreen
oath-vulns
Aug 11, 2025
Testing LFI in Windows - How I (never) got a $30000 bounty
evergreen
file-inclusion
write-up
Aug 11, 2025
Stored XSS to Account Takeover (ATO) via GraphQL API
evergreen
XSS
graphql
write-up
Aug 11, 2025
Salt Labs Exposes a New Vulnerability in Popular OAuth Framework
evergreen
oath-vulns
write-up
Aug 11, 2025
Oh-Auth - Abusing OAuth to Take over Millions of Accounts
evergreen
oath-vulns
write-up
Aug 11, 2025
How We Got Persistent XSS on Every AEM Cloud Site, Thrice
evergreen
XSS
write-up
Aug 11, 2025
How I Discovered XSS that Affects around 20 Uber Subdomains
evergreen
XSS
write-up
Aug 11, 2025
Hacking High-Profile Bug Bounty Targets - Deep Dive into a Client-Side Chain
evergreen
CSPT
XSS
CSRF
Aug 11, 2025
Bypassing Access Control through OPTIONS Request + Method Smuggling
evergreen
bypass-403
write-up
Jun 07, 2025
Bypassing HackerOne 2FA Due to Race Condition
race-condition
write-up
evergreen
Jun 07, 2025
PayPal Bypass OTP Verification Code Vulnerability Worth $15,000 Bounty
write-up
oath-vulns