https://github.com/brotheralameen1/Discordforschool/security/advisories/GHSA-63xr-98vc-whx5

Published Security Advisory for OneTrust SDK V6.33.0 Vulnerable to Prototype Pollution causing DoS in the system by editing Prototype Value. Currently, submitted this to MITRE CVE to request publication of my CVE to the National Vulnerability Database and awaiting their response. You can click the link above to learn more about the exploit.

#exploit #javascript #prototype #pollution #ethical #ethicalhacking #penetration #testing #cybersecurity #informationsecurity #infosec #cybersec #bughunting #bugbounty #bugbountyhunting #bughunter #webapplication #webapplicationsecurity #security

Check it out, here’s another #news #article I’ve been #referenced in:

https://www.13secnews.com/bug-bounty-da-nubank-e-considerado-farsa-desmotivando-hunters/

The article itself is in #Spanish but you can use the #Google #Translate to get in in #English.

#CyberSecurity #BugBounty #EthicalHacking #BugBountyHunting #BBH #BugHunter #BugHunting #WhiteHat #WhiteHatHacker #WhiteHatHacking #PenetrationTesting #PenTesting #PenTest

I've been reading about the subject of #whiteHatHacking in the recent weeks, and the area of #bugBountyHunting really intrigued me.

There have been similar programs, but only for the #WordPress core.

I'm glad there's a new financial incentive in the WordPress ecosystem, to help fix bugs and security issues of popular plugins/themes, and make this #openSource project remain competitive.

:underheart:

https://wptavern.com/wordfence-launches-bug-bounty-program

I'm taking my #WebApp #BugBountyHunting experience and looking for employment as a #Stealth #Recon #Vulnerability #Assessor for #RedTeam #Pentesting.

$1000 for anyone who helps me get a first paycheque.