Cyber (@epagov) 's Twitter Profile
Cyber

@epagov

Broken link hijacking by tharun poc

ID: 1338096214118526976

calendar_today13-12-2020 12:19:46

1 Tweet

0 Followers

1 Following

N$ (@nav1n0x) 's Twitter Profile Photo
N$
@nav1n0x

a year ago

If your target uses Rails, look for Action View CVE-2019-5418 - File Content Disclosure vuln. Although this is an old bug, it can still be found. Intercept the request in Burp and replace the Accept header with: `Accept: ../../../../../../../../../../etc/passwd{{` #bugbountytips

If your target uses Rails, look for Action View CVE-2019-5418 - File Content Disclosure vuln. Although this is an old bug, it can still be found. Intercept the request in Burp and replace the Accept header with: `Accept: ../../../../../../../../../../etc/passwd{{` #bugbountytips