Cyber

@epagov

Broken link hijacking by tharun poc

Katılım Aralık 2020

1 Takip Edilen0 Takipçiler

Cyber retweetledi

N$@nav1n0x·23 Oca

If your target uses Rails, look for Action View CVE-2019-5418 - File Content Disclosure vuln. Although this is an old bug, it can still be found. Intercept the request in Burp and replace the Accept header with: `Accept: ../../../../../../../../../../etc/passwd{{` #bugbountytips

English

244

1.1K

74.5K

Keşfet

@elonmusk @BarackObama @taylorswift13 @cristiano @BillGates @NASA @nikifrancismediavine @katyperry