Booking.com disclosed a bug submitted by tuantv89: hackerone.com/reports/2506727 #hackerone #bugbounty

Our security researcher hashkitten found one of the most critical exploit chains in the history of Assetnote. Affecting 40k+ instances of ServiceNow, we could execute arbitrary code, access all data without authentication. You can read our blog here: assetnote.io/resources/rese…

Dang d3fp4r4m's new Lemma project looks nuts.

In our latest blog, we spoke with hacker Juan Francisco Bolívar about his recent discovery of an impactful GraphQL vulnerability in an e-commerce application API. See how he says other organizations can avoid this bug: bit.ly/46utux2 What have you hacked recently? 🤔

CVE-2024-36401 github.com/Chocapikk/CVE-…

Congrats all teams 👏 It is an amazing event with almost all the top hackers and influencers in the bug bounty community worldwide. I see a lot of geniuses and young people here 🫡 It is exactly a World Cup of white hat hackers 💪

we got an ~RCE on M365 Copilot by sending an email by ~RCE I mean full remote control over its actions - search for sensitive content (sharepoint, email, calendar, teams), execute plugins and outputs - bypass DLP controls, manipulate references, social engineer its users on our

Thrilled to release my latest research on Apache HTTP Server, revealing several architectural issues! blog.orange.tw/2024/08/confus… Highlights include: ⚡ Escaping from DocumentRoot to System Root ⚡ Bypassing built-in ACL/Auth with just a '?' ⚡ Turning XSS into RCE with legacy code

I see a lot of companies public VDP recently on bug bounty platforms although they already run private program in a long time with same scope. I feel like the researcher is being cheated of their efforts and only getting a thank or HoF in return🥲 What do you think about this?

This was the last thing I found / worked on while still at Tenable. A fun SSRF via Microsoft Copilot Studio leading to a critical info disclosure (CVE-2024-38206). Thanks to Jimi Sebree and the team for helping get this one out. tenable.com/blog/ssrfing-t…

“HackerOne employee improperly accessed vulnerability data of customers to re-submit duplicate vulnerabilities to those same customers for personal gain.” hackerone.com/reports/1622449

CVE-2024-43425 : Moodle remote code execution via calculated question types payload : (1)->{system($_GET[chr(97)])} then ?a=<cmd> blog.redteam-pentesting.de/2024/moodle-rc…

thanks shubs for telling the ugly truth, everybody is putting few scripts to gather data, few payloads, create nice dashboards and graphs, then sell it as state of art next generation ASM that is shit to what a core ASM looks like. youtube.com/watch?v=47TIPt… #ASM #BugBounty

Happy Vietnam National Day 🇻🇳 I love my country. A peace loving country ❤️

javascript:console.log(__BUILD_MANIFEST.sortedPages.join('\n'));

Here's my x-correlation/json-injection research also in writing, thank you Critical Thinking - Bug Bounty Podcast! blog.criticalthinkingpodcast.io/p/hackernotes-…