r29k@bugcrowd:~$ cat writeups/index.md

Valid Bugs 400+

Global Rank 164th

Country Rank #1 PK

CVEs Published 3

Hall of Fames 50+

Writeups

01ATO

Account Takeover

Critical ATO Bug Bounty

→

02IDOR

Account Takeover via Chained IDORs

Critical IDOR ATO Bug Bounty

→

03XSS

Privilege Escalation via Stored XSS

High XSS PrivEsc Bug Bounty

→

04AWS

From AWS S3 Bucket Misconfiguration to Sensitive Data Exposure

High Misconfiguration Cloud Bug Bounty

→

05XSS

Self-XSS to Stored XSS

High XSS Bug Bounty

→

06ATO

Wayback Machine to Account Takeover

Critical ATO Recon Bug Bounty

→

07CVE

CVE-2020-28722 / CVE-2021-36695 / CVE-2021-36696 — Stored XSS in Deskpro

CVE High XSS Research

→

08SSTI

SSTI to Local File Read

High SSTI LFI Bug Bounty

→

09CSRF

CSRF + Open Redirect Chained to Account Takeover

High CSRF ATO Bug Bounty

→

10IDOR

IDOR: Unauthorized Access to Support Tickets

Medium IDOR Bug Bounty

→