3264
Talk and help about bugbounty
It not redirecting any meaningful data, and there are not individual session token attached to it, so it does nothing
Читать полностью…
If the url ue testing directs u ti evil.com and u see evil.com then yes
Читать полностью…
Hi guys, I'm new to this field of bug bounty.
Please I have a question,
Adding "@another URL" at the end of a URL to redirect it, can we regard this as a vulnerability
e.g. https://example.com@evil.com
Can this be report as open URL redirection?
What a joke bro , if anyone have private key then, they can easily account takeover of anybody .
Читать полностью…
Search on exploit-db check the version u need cause there is alot
Читать полностью…
Hi everyone, I'm new here, I'm doing a bug bounty, is anyone willing to answer 2 questions in dm?
Читать полностью…
But would u share it with someone in this group?
Читать полностью…
Bro wtf, you really think that there is someone who has fb otp bypass and not reported it in h1?
Читать полностью…
This is not a bug we tunneling the dns to another domain I'm reported atleast 5 websites for these bug but everyone says it's not a bug 😂😂😂
Читать полностью…
It is not as easy as you think, you will have to study the subject well since it depends on many things, the Portwigger JWT labs are very complete 100% recommended https://portswigger.net/web-security/jwt
Читать полностью…
If the base url is at the website then u add the evil.com and takes u there then yes
Читать полностью…
Can anyone help me with a bug bounty? I know there is a bug in the site
Читать полностью…
does anyone understand jwt well? I don't have the private key if you can get it contact me in dm
Читать полностью…
Just new here and wanna begin my way to learning the bug bounty
Читать полностью…
No I would probably drop it on twitter for the lulz
Читать полностью…