bug-bounty448
google354
microsoft311
facebook262
xss238
apple179
malware174
rce149
exploit124
bragging-post101
cve99
account-takeover93
phishing83
csrf79
privilege-escalation77
supply-chain65
stored-xss65
authentication-bypass63
dos60
browser57
reflected-xss57
react50
cloudflare49
cross-site-scripting48
reverse-engineering48
input-validation48
access-control47
aws45
docker45
smart-contract45
node44
sql-injection43
ethereum43
web343
defi42
web-security42
web-application41
ssrf38
burp-suite35
idor34
vulnerability-disclosure34
info-disclosure33
race-condition33
html-injection33
cloud32
writeup32
oauth32
buffer-overflow32
smart-contract-vulnerability32
information-disclosure30
0
2/10
Valea is a systems programming language designed for AI agents that outputs compiler errors as JSON-formatted API responses instead of human-readable text, enabling more reliable machine parsing and code generation without regex scraping.
programming-language
compiler-design
ai-agents
code-generation
json-api
systems-programming
developer-tools
Valea
hvoetsch
0
5/10
bug-bounty
SQL injection vulnerability discovered in Nutanix's bootcamp.nutanix.com login endpoint accepting JSON POST requests. Error-based SQLi via email parameter revealed MySQL version 8.0.11 using extractvalue() payload; exploitable through JSON API without authentication.
sql-injection
json-api
mysql
error-based-sqli
extractvalue
burp-suite
sqlmap
login-bypass
bug-bounty
web-application
bootcamp.nutanix.com
Nutanix
Muhammad Khizer Javed
Express
MySQL 8.0.11
0
7/10
vulnerability
SQL injection vulnerability in tw.stock.yahoo.com's getjson.php endpoint exploited via double URL encoding (%2527) to bypass single-quote filtering, achieving root database access and ability to extract MySQL password hashes.
sql-injection
authentication-bypass
input-validation
double-encoding
json-api
root-access
mysql
bug-bounty
Yahoo
tw.yahoo.com
tw.stock.yahoo.com