Vipin Panchal (@dirtycoder0124) su Piclur: Just got a reward for a high vulnerability submitted on @yeswehack -- (XSS) - Stored (CWE-79). <a style="text-decoration: none;" rel="nofollow" target="_blank" href="https://yeswehack.com/hunters/dirty0124">yeswehack.com/hunters/dirty0…</a> #YesWeRHackers Steps:1. Found misconfigured Algolia key2. Escalate it into Stored XSS3. Payload executed when searching for a specific keyword #bugbountytips / Piclur

Vipin Panchal

@dirtycoder0124

24 nov

Just got a reward for a high vulnerability submitted on @yeswehack -- (XSS) - Stored (CWE-79). yeswehack.com/hunters/dirty0… #YesWeRHackers Steps: 1. Found misconfigured Algolia key 2. Escalate it into Stored XSS 3. Payload executed when searching for a specific keyword #bugbountytips

Rajesh sagar

@rajeshsagar777

24 nov

congrats Bhai

Vipin Panchal

@dirtycoder0124

24 nov

Thank you

Bhavya

24 nov

how did u did ? i also find one algolia key!!

Vipin Panchal

@dirtycoder0124

25 nov

check what permissions it has

YesWeHack ⠵

25 nov

Congratulations! 👏

Dan

24 nov

How did u find misconfigured Algolia key?

Ved Parkash

25 nov

Congratulation bhai

United States Tendenze

1. Cloudflare 27.6K posts
2. #heatedrivalry 28.6K posts
3. Cowboys 73.8K posts
4. LeBron 112K posts
5. fnaf 2 27.4K posts
6. Gibbs 20.7K posts
7. Pickens 14.8K posts
8. Warner Bros 27.5K posts
9. scott hunter 6,235 posts
10. Lions 92.7K posts
11. Happy Farmers 1,461 posts
12. rUSD N/A
13. #PowerForce N/A
14. Paramount 21.4K posts
15. Shang Tsung 34K posts
16. Brandon Aubrey 7,493 posts
17. Wizkid 173K posts
18. Scott and Kip 3,596 posts
19. Eberflus 2,697 posts
20. CeeDee 10.7K posts

Something went wrong.

Something went wrong.