Poc of IDOR worth $1250🤑 | Bug Bounty

Poc of IDOR worth $1250🤑 | Bug Bounty | Hackerone

Рет қаралды 21,161

Жыл бұрын

IDOR poc for which researcher got 1250$
#bugbounty #writeup #bugbountytips
.
.
.
.
.
.
.
.
.
.
.
.
.
.
Related searches
bug bounty
bug bounty writeups
bug bounty for beginners
bug bounty poc
bug bounty hunting
bug bounty for beginners
how to get started in bug bounty
hackerone bug bounty
bug bounty reports explained
bug bounty methodology
bug bounty course
poc bug bounty
bug bounty poc disclosure
bug bounty explained in hindi
bug bounty tutorial
bug bounty live
bug bounty tips
bug bounty poc 2021
idor bug bounty poc
bug bounty beginners
bug bounty explained
bounty,bug bounty in hindi
xss bug bounty
bug bounty tips

Пікірлер: 24

@HackerEldee 11 ай бұрын

first understand how the bug works, you will definitely find them. Nice finding bro

@breakoutgaffe4027 2 ай бұрын

Sick 🔥 🔥

@nehamartand7499 Жыл бұрын

Good one!

@shantanubharadwaj1849 Ай бұрын

good shit ! 😉

@SolitaryElite Жыл бұрын

good info disclosure xd

@newbiejember9854 2 ай бұрын

nice one

@ClashWithHuzefa 7 ай бұрын

Nice

@WasiLi0x1e Жыл бұрын

nice

@parwatsingh677 Жыл бұрын

Thank you 🙏👍

@user-kv7xp2ty8e 11 ай бұрын

2021😄

@shubhambajaj4939 6 ай бұрын

did you find this bug?

@abdullahjaved2371 Ай бұрын

How does an email disclosure award $1250 bounty??

@amaliya6606 Жыл бұрын

Can you please send me the report?

@mohitdisal1306 Жыл бұрын

explain it or give subtitles atleast

@jaredelfaz2558 Жыл бұрын

it's just IDOR.

@Frawkesish 11 ай бұрын

Step 1.. find a request that has a id value with a number.. make a second account and make the same request but this time you change the id number to be the same as the first account.. if it returns the info on the first account then you got a bug

@Nik-lf4rw 3 ай бұрын

the fuck its really easy to understand lol

@breakoutgaffe4027 2 ай бұрын

😂😂

@bigmaster2404 Жыл бұрын

Impact?

@biggusdickus8452 16 күн бұрын

Disclosure of user IDs, email address, potential ability to change comments on orders if you use the credentials you get from these. You may also be able to get an admin account email and id if you search all comments.