Apple — Safari Safe Browsing Bug https://medium.com/@rahulmfg/safari-vulnerability-leaves-it-s-users-unsafe-safari-safebrowsing-cb6a2c3a47c0

Google — XSS in Google Translate http://getrhl.blogspot.in/2013/11/google-translate-bug-xss-browser-cookies.html

United Airlines — Account Takeover

Facebook — FB Groups API Bug [Access group docs]

https://medium.com/@rahulmfg/get-groups-doc-without-user-permission-facebook-graph-api-bug-5f19367373a2

Flickr — CSRF to accept Group Join Invite https://www.youtube.com/watch?v=6JLbmr5m4M0&feature=youtu.be

Amazon — Clickjacking in all pages

HackerRank — Stored XSS in Profile

Facebook — IDOR in Facebook Group Chat https://medium.com/@rahulmfg/facebook-group-chat-bug-2013-e3595cdbbd51

Facebook — CSRF in Search

MediaFire — CSRF to disable SSL

eBay — Reflected XSS

http://pages.ebay.com/securitycenter/ResearchersAcknowledge ment.html [Rahul M]