Hacktivity

악성 파일 업로드를 통한 Self XSS

Writer 장종민 Program webhacking.kr

WEB
Out of scope None Disclosed (Full) No Reward Aug 20, 2021 (10 months ago)

Relative XSS를 이용한 Cookie & Session Cache or Overwrite

Writer 장종민 Program webhacking.kr

WEB
Informative None Disclosed (Full) No Reward Aug 20, 2021 (10 months ago)

비밀번호 길이 확인 부족으로 인한 서비스 거부 발생

Writer what_web Program webhacking.kr

WEB
Informative Medium Disclosed (Full) No Reward Aug 14, 2021 (a year ago)

id 파라미터를 통한 sql injection

Writer as3617 Program webhacking.kr

WEB
Resolved Critical Disclosed (Full) 1,000,000 Aug 2, 2021 (a year ago)

비인증으로 challenge 기능 접근 가능

Writer 애배배 Program webhacking.kr

WEB
Informative Low Disclosed (Limited) No Reward Aug 2, 2021 (a year ago)

Use of Insufficiently Random Values - credentials & PII Information Leak

Writer what_web Program webhacking.kr

WEB
Informative High Disclosed (Limited) No Reward Aug 2, 2021 (a year ago)

Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain

Writer what_web Program BaaSClopi

WEB
Resolved Medium Disclosed (Limited) 50,000 Jul 1, 2021 (a year ago)

Improper session management - Session Does Not Expire On Password Reset

Writer what_web Program webhacking.kr

WEB
Informative Low Disclosed (Limited) No Reward Aug 2, 2021 (a year ago)

Email Spoofing to Inbox due to Missing or Misconfigured DMARC on Email Domain

Writer what_web Program webhacking.kr

WEB
Informative Medium Disclosed (Limited) No Reward Aug 2, 2021 (a year ago)