Biscuit's Bug Bounty Playbook

👋Introduction to Biscuit's Bug Bounty Playbook
Mains
Bug Bounty Reports & Articles
Bug Bounty Platforms
Exploiting Technologies

Powered by GitBook

On this page

Bug Bounty Reports & Articles

Broken Access Control & Broken Authentication

File Upload Functionality

PreviousBroken Access Control & Broken Authentication NextPassword Reset Functionality

Last updated 10 months ago

7️⃣

⚙️

https://riccardomalatesta.com/how-i-earned-500-by-uploading-a-file-write-up-of-one-of-my-first-bug-bounty/riccardomalatesta.com

CS Money disclosed on HackerOne: Blind XSS on image uploadHackerOne

Semrush disclosed on HackerOne: Unrestricted file upload in...HackerOne

X (Formerly Twitter) disclosed on HackerOne: File Upload XSS in...HackerOne

Reddit disclosed on HackerOne: Reflected XSS via File UploadHackerOne

Reddit disclosed on HackerOne: Unrestricted File Upload on...HackerOne