Alhamdulilah, My first valid bug in 2024. if you are testing a shopping site add something to your cart and change the quantity to a negative number, you might get a discount 😂, in my case the attacker can’t complete the purchase so it got rated as P4

Need help, This issue got fixed and the customer requested a retest, I confirmed it was resolved then I noticed another similar bug but different outcome, I submitted it and got closed as N/A, they told me that the customer should fix it both ways while this is still unresolved.

It was a while for me without finding any bugs, now I can confirm that seeing this is the best way to start your day 😀. #TogetherWeHitHarder #bugbounty

Hey guys, this program has set waf restrictions right after I submitted these reports, now they are not reproducible. Will they be accepted? #bugbounty

Yay, me and bro inzo got awarded a $1500 bounty on bugcrowd. #ItTakesACrowd #bugbount

Just scored a bounty on bugcrowd, l just love Logic flaws ❤️. Always try to break the logic of the application and force it to do things it's not supposed to do. Manipulating items, key components, parameters can reveal a lot of logic flaws. #ItTakesACrowd #bugbounty

Alhamdulillah, two reports got triaged on bugcrowd ❤️. Break the logic and trust the process. #BugBounty

Yay, I scored a reward on bugcrowd for an IDOR. Quick overview: While testing a shopping site I noticed a special offer that was intended for only one item, and by using another item’s ID in the request I got a juicy discount on it.

I found a logic flaw that grants me free add-ons with the product, and confirmed there is no price check on the checkout! They closed my report as N/A just because "most of the times purchases go through a manual review process". That's unfair my role is to test WEB APPLICATIONS!