LEFT SIDEBAR AD

Hidden in mobile, Best for skyscrapers.

How I Found My First P1 Bug ??

1 month ago 27
BOOK THIS SPACE FOR AD
ARTICLE AD

Anonstrk

Hello everyone, this is the first bug I have found.

Shall we begin? Let me tell you, it’s part of a VDP program, and this is a P1 vulnerability.

When I started hunting on this website, I used my own methodology, which we can discuss in another blog.

When I began hunting on the main domain, I didn’t find anything because it was secure. After that, I started searching for subdomain URLs using WaybackURLs. I found a lot of URLs, so I checked them manually, one by one. It was a really hard task, but I used the Bulk URL Opener extension in Chrome. After that, I found an admin panel.

I tried logging in with default credentials like ‘admin’/’admin.’ I created some permutations of default usernames and passwords and applied them one by one. Eventually, I logged in using default credentials and accessed the dashboard.

After I reported the bug and received swag from the company, I was very happy at that moment.

Read Entire Article
  3. How I Found My First P1 Bug ??

Related

Methods to bypass 403 & 401

Methods to bypass 403 & 401

How did I extract the API key in less than half an hour? my story with it

How did I extract the API key in less than half an hour? my story with it

How I Discovered an Email Change Vulnerability Leading to Pre-Account Takeover | p2

How I Discovered an Email Change Vulnerability Leading to Pre-Account Takeover | p2

Vulnerable WordPress October 2024 (Zahhak Castle)

Vulnerable WordPress October 2024 (Zahhak Castle)

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

North Korean Hackers Steal $10M with AI-Driven Scams and Malware on LinkedIn

Chinese Hackers Target Linux with WolfsBane Malware

Chinese Hackers Target Linux with WolfsBane Malware

Trending

1. Arsenal vs nottm Forest
2. Leicester City vs Chelsea
3. Premier League
4. Imtiaz Jaleel Election Result 2024
5. IPL Auction 2025 Date and Time
6. Priyanka Gandhi
7. Hemant Soren
8. Ajit Pawar
9. Wayanad Election Result
10. Aditya Thackeray

Popular

Install waybackurls on Kali Linux

Install waybackurls on Kali Linux

1-click RCE in Electron Applications

1-click RCE in Electron Applications

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Microsoft Office Professional Plus 2019 (x64 & x86) Multilingual + Pre-Activated

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

Install DalFox on Kali Linux

Install DalFox on Kali Linux

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Adobe Master Collection CC 2022 v25.08.2022 (x64) Multilingual Pre-Activated

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Maxon CINEMA 4D Studio S22.123 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

Autodesk Revit 2023 R1 Build 23.0.11.19 (x64) Multilingual + Crack

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

‘We are not motivated by profits’ – Open Bug Bounty maintainers on finding a niche in the crowdsourced AppSec market

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

Just Gopher It: Escalating a Blind SSRF to RCE for $15k

BOOK THIS SPACE FOR AD
RIGHT SIDEBAR BOTTOM AD
Bengali (Bangladesh) Bengali (Bangladesh) · English (United States) English (United States) ·
About Us · Terms & Condition · Contact Us
© Security Alert 2024. All rights are reserved