bug-bounty498
google355
xss301
microsoft298
facebook263
rce211
exploit200
malware171
apple164
cve136
account-takeover115
bragging-post102
privilege-escalation95
csrf90
phishing86
browser75
writeup74
authentication-bypass69
supply-chain68
dos66
stored-xss65
reflected-xss57
ssrf56
reverse-engineering55
react52
access-control51
input-validation49
cross-site-scripting48
aws47
cloudflare47
docker46
web-security46
lfi46
sql-injection45
smart-contract45
ethereum44
web-application44
web343
defi43
ctf43
oauth43
node43
pentest40
race-condition39
idor37
open-source37
cloud37
burp-suite36
info-disclosure36
auth-bypass35
0
6/10
bug-bounty
Author demonstrates LaTeX injection leading to RCE in a private bug bounty program by exploiting a PDF conversion feature in a journal CMS, achieving command execution and lateral movement via SSRF to database and Elasticsearch.
latex-injection
rce
remote-code-execution
bug-bounty
xss
ssrf
server-side-request-forgery
pdf-conversion
cms-vulnerability
file-read
privilege-escalation
command-execution
Yasho
InfoSec Write-ups
0
5/10
A reflected XSS vulnerability was discovered in Bugcrowd's main domain via an undisclosed 'locale' parameter that was vulnerable to injection attacks. The vulnerability was traced to Locomotive CMS used by multiple websites, allowing attackers to steal user data and perform CSRF attacks; Bugcrowd patched the issue and awarded $600.
reflected-xss
cross-site-scripting
locomotive-cms
parameter-injection
csrf
bugcrowd
cms-vulnerability
main-domain
bug-bounty-report
Bugcrowd
Locomotive CMS
WitCoat Security
v0sx9b