How I was able to list some internal information from PayPal #BugBountyTL;DR : A page on domain manager.paypal.com was vulnerable to “Expression Language Injection” (JSTL) and I was able to extract some…Jun 7, 20188Jun 7, 20188
Published inInfoSec Write-upsWhat tools I use for my recon during #BugBountyHi guys! This is my first article about Bug Bounty and I hope you will like it! I’m a bug hunter on YesWeHack and I think it’s cool to…Apr 11, 201822Apr 11, 201822
