The Bug Bounty Hunter

2022-05-28 12:49:44 Bug Bounty FIRE Goals

https://hogarth45.medium.com/bug-bounty-fire-goals-6663a7980984 Open / Comment

2022-05-28 03:06:04 CVE-2022-0540 - Authentication bypass in Seraph

https://blog.viettelcybersecurity.com/cve-2022-0540-authentication-bypass-in-seraph/ Open / Comment

2022-05-28 02:25:52 LinkedIn bug bounty program goes public with rewards of up to $18k

https://portswigger.net/daily-swig/linkedin-bug-bounty-program-goes-public-with-rewards-of-up-to-18k Open / Comment

2022-05-26 19:26:00 VMware Authentication Bypass Vulnerability (CVE-2022-22972) Technical Deep Dive

https://www.horizon3.ai/vmware-authentication-bypass-vulnerability-cve-2022-22972-technical-deep-dive/ Open / Comment

2022-05-25 23:08:48 Blind XSS in app.pullrequest.com/████████ via /reviews/ratings/{uuid}

https://hackerone.com/reports/1558010 Open / Comment

2022-05-25 16:37:33 Stored XSS in Notes (with CSP bypass for gitlab.com)

https://hackerone.com/reports/1481207 Open / Comment

2022-05-25 16:28:13 Bug Bytes #171 – New Android Web Views attacks, Arbitrary file theft on Android & Scanning for PII in images

https://blog.intigriti.com/2022/05/25/bug-bytes-171-new-android-web-views-attacks-arbitrary-file-theft-on-android-scanning-for-pii-in-images/ Open / Comment

2022-05-25 15:20:32 Autotype protection breach under fastjson | fastjson autotype bypass



Open / Comment

2022-05-24 23:56:34 Basics on commands/tools/info on how to assess the security of mobile applications

https://github.com/randorisec/MobileHackingCheatSheet Open / Comment

2022-05-24 10:57:16 GradeJS analyzes production Webpack bundles without having access to the source code of a website.

https://github.com/fingerprintjs/gradejs Open / Comment