Back to directory
WRITEUP #723

$9240 Bounty in 30 days Hunt Challenge

ReconInformation disclosureReflected XSSAccount takeoverCORS misconfigurationWeb cache deceptionLogic flawCSV injectionHTML injectionClient-side enforcement of server-side security2FA / MFA bypassBroken Access ControlPrivilege escalationPre-account takeover
by@omidxrz(0xrz)
Bounty
9,240
Program
-
Published
Oct 21, 2023
Added to HackDex
Feb 6, 2024
Read Full Writeuphttps://blog.voorivex.team/9240-bounty-in-30-days-hunt-challenge
RELATED WRITEUPS
How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System
ReconMissing authentication
$1600 Bounty on a Main Domain
ReconSession fixation
P3 (Medium) : How I Gain Access To NASA's Internal Workspace?!
ReconInformation disclosure
How I Got Bugs From Google Dorks
ReconInformation disclosure
How I can easily get four P1 at NASA using Simple Google Dorking.
ReconInformation disclosure

Built with ❤️ by Shubham Rawat