Easy Business Logic Flaw 1-Chose a Subscription plan 2-Intercept the request 3-Modify parameters related to the subscription tier upgrade 4- Change it to a lower tier 5- Verify that the tier has been changed within the same price Great impact But Dup😓 #bugbountytips

THREAD How did I find 2 DOM XSS by hacking Swagger-UI? 1-Do a subdomain enum to find subs that use Swagger Ui 2-Get the live subs 3-Run Nuclei in all the live subs using the (-tags swagger) 4-Find Swagger Ui endpoints #BugBounty #bugbountytip #bugbountytips #Cybersecurity

Geting ready for subdomain enumeration on 1500+ domains Day 1 and still counting , i think it will take a week 😅 #BugBounty #BugBountytips #BugBountytip

مسحت ملف فيه شغل اسبوع بالغلط 😅

Update : I've reported 5 3 of them got triaged Vala sepix y'all were laughing and said it would be dups😅 #bugbountytip #bugbounty #bugbountytips #CyberSecurity

We're happy to announce that we created a tool to automate the process of finding CVE-2024-24142 and detecting the SQL Error. by @Ev1ct1on & Meshaal github.com/SentinelXResea… #bugbountytips #bugbountytip #bugbounty

Anyone know a good tattoo removal place? #lockbit

Raspberry Pi Pico development using the Flipper Zero as a CMSIS-DAP interface for SWD and UART.

#SherlockHolmes #ArthurConanDoyle

#leap

Saturn the Moon Jupiter and it's Moons all in 1 capture

كونان معد هو ممتع مثل اول 😔 #المحقق_كونان #DetectiveConan

improper access control الحمدلله رجعت بشي يجمّل بعد وفي شركة عالمية ، اول مايصحلونها ويحددون خطورتها راح اشارككم تفاصيها شكرا على الTip الي كان في مقطع سوني Rushy😼 #امن_سبراني #bugbountytips #bugHunting #BugBounty

غسلني غسل يا اخوان وش ذا #امن_سيبراني