I earned $X,XXX (1k$ bonus) for 3 submissions on @bugcrowd bugcrowd.com/janlele91
Focus a program only, pay attention to its focus area, and dont forget to bypass resolved report.
My first P1 bounty ever, writeup comming soon ๐ฅ๐ฅ
#ItTakesACrowd #bugcrowd #BugBounty
Spent 8 hours straight on @bugcrowd to identify these ๐ฎโ๐จ
let's see how it goes๐
#bugbounty tips #bugbounty #ittakesacrowd #infosecurity
Tip: always try to find places where you are able to store values and test them for Stored XSS
3 Triaged remaining 5 are yet to be Triaged๐ bugcrowd #BugBounty #infosecurity
But not satisfied with severity it should be P1 as I'm able to takeover other researcher's account. Since Stored XSS doesn't require user interaction & ATO without user interaction is P1 Michael Skelton ?
I earned $2,500 for my submission on
bugcrowd
It leads to accessing 170k employees' PII ๐ + Internal Vulnerability reports ๐ชฒ
#ItTakesACrowd
#bugbounty
I earned $900 for my submission on @bugcrowd
It's truly motivating to receive such positive feedback from the customer team, and it gives motivation to work hard.
#ItTakesACrowd
#bugbounty #bugcrowd
I earned $500 for my submission on @bugcrowd #ItTakesACrowd XSS stored
BugbountyTip:
-> Overtested program
i'm not an xss guy..
but.. Encode everything as you can ๐ซก
#bugbounty #infosec