bug-bounty432
google350
xss348
microsoft279
facebook245
apple171
exploit158
rce153
malware95
account-takeover94
cve87
csrf82
writeup78
bragging-post78
browser76
privilege-escalation66
react59
authentication-bypass57
cloudflare54
dos53
ssrf51
docker51
node49
aws47
access-control47
smart-contract45
phishing45
oauth45
ethereum43
defi42
supply-chain42
sql-injection41
web341
lfi37
idor34
smart-contract-vulnerability32
clickjacking31
web-application31
wordpress30
race-condition30
reverse-engineering30
info-disclosure29
vulnerability-disclosure29
cloud28
information-disclosure28
burp-suite28
solidity27
web-security27
cors26
responsible-disclosure26
0
5/10
Researcher discovered full account takeover vulnerability by chaining a missing CSRF token validation on the password change endpoint with a hidden 'uid' parameter discovered via Param Miner, allowing password changes for any user without authentication, resulting in a $1000 bounty.
account-takeover
csrf
parameter-discovery
password-change
hidden-parameters
json-parameter-manipulation
bragging-post
Mohsin Khan
Param Miner
Burp Suite
James Kettle
0
7/10
bug-bounty
A researcher discovered a P1 account takeover vulnerability by bypassing CSRF protections on a password change endpoint through server-side validation bypass—using a random email address format instead of the victim's actual email allowed successful password changes without requiring the victim's email in the CSRF payload.
csrf
cross-site-request-forgery
account-takeover
password-change
server-side-validation
input-validation
bug-bounty
p1-vulnerability
Lady Secspeare
Bugcrowd