Common Information
| Type | Value |
|---|---|
| Value |
redacted.com |
| Category | |
| Type | Domain |
| Misp Type | |
| Description |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-11-16 | 10 | How Did I Get My First Collaboration Bounty Of $1000? | ||
| Details | Website | 2024-11-16 | 25 | How I Turned a Low Blind SSRF Into a Critical Vulnerability With Strategic Impact Escalation | ||
| Details | Website | 2024-11-16 | 3 | Chaining CSRF and an Open-Redirect leads to sensitive information disclosure | ||
| Details | Website | 2024-11-05 | 10 | RCE via Dependency Confusion: A Real-World Attack on Unclaimed npm Packages | ||
| Details | Website | 2024-10-30 | 4 | Chaining Four Vulnerabilities Leading to Account Takeover | ||
| Details | Website | 2024-10-29 | 2 | How I Stopped a Data Breach In 2 Minutes: A Lesson on Insecure Direct Object… | ||
| Details | Website | 2024-10-24 | 4 | 50€ Rabbit Hole — Plain as Cake Bugs | ||
| Details | Website | 2024-10-23 | 1 | Parameter tampering result in product price manipulation 🤑 | ||
| Details | Website | 2024-10-16 | 2 | Hidden Reflected XSS via Android Application in VDP | ||
| Details | Website | 2024-10-13 | 4 | How I got Time Based SQL Injection in an Old Public Bug Bounty Program | ||
| Details | Website | 2024-10-08 | 3 | Account Takeover via Hidden Parameters in BBP | ||
| Details | Website | 2024-10-06 | 11 | 4o4 not found* == bounty?! | ||
| Details | Website | 2024-09-23 | 5 | Unauthenticated API Endpoint to Create Support Ticket Worth $500 | ||
| Details | Website | 2024-09-06 | 8 | As Luck Would Have It — tales of good fortune in bug bounty | ||
| Details | Website | 2024-08-31 | 1 | Parameter tampering result in product price manipulation 🤑 | ||
| Details | Website | 2024-08-31 | 6 | Using Default Credential to Admin Account Takeover | ||
| Details | Website | 2024-06-20 | 11 | 【海外SRC赏金挖掘】通过项目资产监控,五分钟捡漏2000美刀!! | ||
| Details | Website | 2023-08-11 | 10 | Gone in a Click: IDOR Vulnerabilities in Image Upload Function | ||
| Details | Website | 2023-07-31 | 3 | Bypassing email verification of high-profile tech company ($$$) | ||
| Details | Website | 2023-07-29 | 3 | Bypassing email verification of high-profile tech company ($$$) | ||
| Details | Website | 2023-07-18 | 15 | Server Side Request Forgery in Company with €900M+ Revenue | ||
| Details | Website | 2023-07-08 | 9 | IDOR To Delete Hall Of Fame Page. | ||
| Details | Website | 2023-06-24 | 3 | Introspection Query leaks Graphql schema | ||
| Details | Website | 2023-06-20 | 2 | SQL Injection in The HTTP Custom Header | ||
| Details | Website | 2023-06-20 | 23 | How I chained Host header Injection to Password Reset Link Poisoning to XSS and Account Takeover. |