Pocas

This blog shares the some vulnerabilities list i found.

Deleted - 25 Jan 2023
Not authorized
Deleted - 26 Dec 2022
Not authorized
Express - 19 Dec 2022

I found a way to trigger an RCE vulnerability via confusing file extenstion in the render() function
Deleted - 15 Dec 2022
Not authorized
Deleted - 13 Dec 2022
Not authorized
Deleted - 9 Nov 2022
Not authorized
Deleted - 24 Sep 2022
Not authorized
Deleted - 24 Sep 2022
Not authorized
Deleted - 24 Sep 2022
Not authorized
Deleted - 17 Aug 2022
Not authorized
Deleted - 10 Aug 2022
Not authorized
Dreamhack - 4 Apr 2022

I found a vulnerability that could leak all of DreamHack’s Wargame Write Up using a simple IDOR
npm - 22 Mar 2022 ~ 17 Jun 2022
Found confusing URL parsing within NPM's parser module
Microsoft - 15 Mar 2022

Bypass that patch using the template tag. Yea this was a simple Sanitizer bypass where I could inject an iframe, script tag
Naver - 12 Feb 2022
Trigger XSS after splReservSeq leak in purchase logic
Naver - 10 Feb 2022

The serieson.naver.com was very vulnerable to Dom Based XSS via Open Redirect * 2
Naver - 10 Feb 2022

Exposure of sensitive information in the response of the file upload process
Naver - 21 Jan 2022
The joinus.comic.naver.com was very vulnerable to Dom Based XSS
NASA - 22 Nov 2021
There was an RCE vulnerability in NASA's subdomain
Rakuten - 17 Nov 2021
Triggered XSS Vulnerability within Rakuten WAF Error Pages
SHINSEGAE - 10 Nov 2021
There was 3 XSS vulnerabilities in ssgdfs (HackTheChallenge)
NCSoft - 10 Nov 2021

There was 2 XSS vulnerabilities in NCSoft's subdomain (HackTheChallenge)
npm - 29 Oct 2021
Prototype Pollution utils.js < 0.17.2
Kakao - 30 Oct 2021

The mail.kakao.com was very vulnerable to Stored XSS via Sanitizer Bypass
Naver - 21 Oct 2021
The nid.naver.com was very vulnerable to Reflected XSS via CSP Bypass
Kakao - 7 Oct 2021
The www.kakao.com was vulnerable to Directory Listing and LFI
Rakuten - 30 Sep 2021
Triggered 3 XSS Vulnerabilities in Rakuten Services