{"uuid": "7c9f6e71-ebda-47d5-876f-e723fc20bc15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-15473", "type": "seen", "source": "https://t.me/bhhub/137", "content": "#BugBountyTips of the Day\n\u201cP1 in 2 minutes\u201d is like when Usain Bolt runs \ud83c\udfc3\ud83c\udffb for few seconds and win millions! A lot work and failures before it! Just do your best, success comes in someway. \ud83e\udd1f\ud83c\udffb #BugBounty\n---\nAnyone want to do a #bugbounty collab? I got a 0day you can try on ur favorite target :)  dm me and I will send the Visual Studio project . \ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83c\uddf0\ud83c\uddf5\ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83d\ude07\ud83d\ude07.\n---\nRecon MindMap  Recon Master-plan\ud83d\udd25 Recon is usually a preliminary step toward a further attack seeking to exploit the target system.  @theXSSrat  #infosec #BugBounty  #recon  https://t.co/5gTX9CEdie\n---\nSonicWall SSL-VPN Exploit Shodan Queries  http.favicon.hash:-1153950306  http.favicon.hash:-2012355198.   Link:  https://t.co/KhIG8dOPWF #bugbounty #bugbountytip  https://t.co/178Eha63t2\n---\nResearchers uncover a new #privacy #vulnerability in #TikTok that could have allowed attackers to access users' profile details and private phone numbers associated with their account.   Details:  https://t.co/aqKxyV303t  #infosec #cybersecurity #bugbounty #bugbountytips\n---\n#bugbounty #bugbountytips  Found a $$$$ RCE with CVE-2018-15473  Steps :  1. Found an IP of the company eg:  https://t.co/sH0ptWvV6Y then  cloned the CVE from  https://t.co/zLHWHg4CEY  2. Ran the command   /sshUsernameEnumExploit.py --username root 0.0.0.0 (ip)", "creation_timestamp": "2021-01-27T13:37:04.000000Z"}