How I earned $1200 on a bounty program :O
Hey!!! how is your lockdown going on :D
Okay…this bug took me around 2 weeks to find out :P Why??? I will tell you :D
Now, whenever we hunt for bugs on a bug bounty program we firstly look for in-scope items right!!
Here I looked out for bug in out of scope domain and found a critical bug on in scope domain how??? Let’s check it out ;)
So…I saw the list of scope items in program and started crawling via burpsuite
I found a domain that use to manage user's services such as Customer information, address, tax status, etc and which was out of scope domain.
In that domain I checked for a list of API calls one by one…so this response was in JSON format after a lot of my search final I found valid credentials :D which were working the right away.
I quickly logged in with those credentials as I was happy to see something.
As I told you before I always keep looking for business impact on any company- hmmm!!!
These credentials didn’t give me any high impact though.
Again I have to search more to get dollars ❤
Once the user login on every request API call was being hit which was an advantage for me.
