Ba7manAdding customers to victim’s store via Insecure Direct Object ReferenceHello! I am back with my 2nd bug bounty write up. This time I’ll be showing you how I found an Insecure Direct Object Reference bug on an…Feb 11, 2022Feb 11, 2022
Ba7manFirst Bounty! Disable 2FA of any user via OTP bypassGetting that first bug bounty is a special feeling for any bug hunter. This is my first write up so please bear with me.Jan 25, 2022Jan 25, 2022