AGNIHACKERSforInfos3c Blogsinfos3c.hashnode.dev·Dec 11, 2022OTP Bypass Through Response ManipulationHello everyone, This is my first report. I am sure everyone will be aware of the first P1 vulnerability which is the most invisible of all(the strike of duplicates and not applicable). This Report is all about a beginner who gets a lot of Duplicates,...9 likes·536 readsbugbounty
Hossam mesbahforInfos3c Blogsinfos3c.hashnode.dev·Dec 2, 2022Broken Access Control + Misconfiguration = Beautiful Privilege EscalationHello everyone, This story will be about the Privilege escalation vulnerability I found lately. There are 2 roles on this site creator/account owner Account owner user is the management and is able to access the full account users and other function...11 likes·75 readsbugcrowd
