bug-bounty457
google361
microsoft312
facebook268
xss250
apple178
malware176
rce165
exploit140
cve111
account-takeover104
bragging-post101
phishing84
privilege-escalation82
csrf81
supply-chain68
stored-xss65
authentication-bypass63
dos62
browser61
reflected-xss57
react52
cloudflare50
reverse-engineering49
input-validation48
cross-site-scripting48
node47
aws47
access-control47
docker46
smart-contract45
ethereum44
sql-injection43
defi43
ssrf42
web-security42
web342
web-application41
writeup37
oauth37
race-condition36
burp-suite35
vulnerability-disclosure34
idor34
info-disclosure34
cloud33
auth-bypass33
html-injection33
lfi32
smart-contract-vulnerability32
0
7/10
bug-bounty
Security researcher Josip Franjković discovered four SQL injection vulnerabilities across Nokia domains between April-July 2013, exploiting blind SQL injection in INSERT queries via User-Agent headers and time-based attacks on legacy PHP sites, earning a Nokia Lumia 820 and Top Reporter status.
sql-injection
blind-sql-injection
time-based-sqli
insert-into-sqli
user-agent-injection
mysql
postgresql
bug-bounty
vulnerability-disclosure
subdomain-enumeration
Nokia
Josip Franjković
Bryan de Houwer
www4.nokia.de
nokia.es
Nokia Lumia 820
Nokia Lumia 920