HackerOne Bug Bounty Disclosure: unauthenticated-lfi-local-file-inclusion-using-the-symbol-at-the-target-hxxps–xym

October 25, 2024

Company Name:
U.S. Dept Of Defense

Company HackerOne URL:
https://hackerone.com/deptofdefense

Submitted By:
0xym

Link to Submitters Profile:
https://hackerone.com/0xym

Report Title:
Unauthenticated LFI (Local File Inclusion) using the symbol `!` At the target `hXXps:///`

Report Link:
https://hackerone.com/reports/2778380

Date Submitted:
25 October 2024

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

You may have missed

hackerone

HackerOne Bug Bounty Disclosure: -ssn-edpi-badlifeguard

October 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: lack-of-rate-limiting-in-hxxps-pki-passreset-aspx-leads-to-pii-disclosure-and-potential-account-takeover-hypervis-r

October 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: pull-any-automated-record-brief-badlifeguard

October 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: sql-injection-k-x

October 25, 2024
hackerone

HackerOne Bug Bounty Disclosure: cve-rce-liferay-portal-unauthenticated-via-hxxps-exploitmsf

October 25, 2024