Top Registration bug Thread 🧵:👇 Here is how to find an account takeover : 1) Duplicate registration overwrite existing user by using specific keywords and even work with bigger characters {"email":["[email protected]","[email protected]"]} , %20 , %00 #BugBounty #BugBountytips #infosec #BUGS
7
62
189
24K
173
2) Dos at name /password field in sign up page using multiple hard and long strings 3) xss in username, email , phone no fileds ["');alert('XSS');//"]@xyz.xxx ; +441134960000;phone-context=<script>alert(0)</script>
@0day_exploit_ #BugBounty Thanks for sharing sir
@0day_exploit_ @VladPandichi @VagettaxX @SaveToNotion #Thread #bugbounty