BugCrowd Bug Bounty Disclosure: P3 - exploitable weaknesses in functionality - By asad_anwar

The below information is fully automated and the information is captured from the BugCrowd Disclosure website. The information was correct at the time of posting.

Program

Program Information

indeed

Program Details

Details

Additional Information

Priority: P3

Hello, I found vulnerability in functionality which could lead to exploitable by any low privilege user .In “https://ads.indeed.com/account/secondary-accounts” there is an options for disable or enable the user right, which was assign by main/super adminDisable function is not working correctly which allow low user to enable his/her privileges.

Full Report (Source)

Submitted By

Submitter Information

Hacker Points: N/A
Hacker Accuracy: N/A
Hacker Rank: N/A

N/A

Submitter Profile

Tags: bug bounty, BugCrowd, OSINT

BugCrowd Bug Bounty Disclosure: P3 – exploitable weaknesses in functionality – By asad_anwar

Program

Details

Submitted By

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

CISA: CISA Releases Six Industrial Control Systems Advisories

Program

Details

Submitted By

You may have missed

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA and FBI Release Updated Guidance on Product Security Bad Practices

CISA: CISA Releases Three Industrial Control Systems Advisories

CISA: CISA and FBI Release Advisory on How Threat Actors Chained Vulnerabilities in Ivanti Cloud Service Applications

CISA: CISA Releases Six Industrial Control Systems Advisories