{"uuid": "ff583eb5-fe61-4e02-9785-cae2a6f39456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/bhhub/611", "content": "#BugBountyTips of the Day\n5 Chrome Extensions for Web Pentesters/ Bug Bounty Hunters \u2705\ud83d\udc47  1\ufe0f\u20e3 Wappalyzer 2\u20e3 Shodan 3\u20e3 Cookie Editor  4\ufe0f\u20e3 HackBar  5\ufe0f\u20e3 Foxy Proxy   #infosec #bugbounty @shifacyclewala\n---\nThanks @redbull and @intigriti  for this fantastic swag. #bugbounty #swag  https://t.co/yeKVJRE7is\n---\nNuclei Template for CVE-2021-22205 - GitLab CE/EE Unauthenticated RCE using ExifTool  Template:  https://t.co/ELvga2mXyI  #bugbounty #pentest #hackwithautomation #gitlab  https://t.co/P18kC8IJJI\n---\nPretty interesting writeup on bypassing ModSecurity WAF for SQLi.  \ud83c\udf1f\"When MySQL sees 1.e(abc), it will ignore the 1.e( portion because the following characters do not form a valid numeric value.\"\ud83c\udf1f   https://t.co/nOa5bBvQNC  #bugbountytips #bugbounty #infosec #cybersecurity  https://t.co/JGUeTsK4o3\n---\nGithub Recon Dorks for beginners(Part-1) -> PT_TOKEN language:bash -> extension:sql mysql dump password -> filename:wp-config.php ->  https://t.co/FJjKBqv6YH password -> filename:.netrc password -> filename:WebServers.xml -> filename:config.php dbpasswd #bugbountytips #githubdork\n---\nI bought a new laptop with my bounties. #bugbounty  https://t.co/481YdgsPm5\n---\npentesters and bug bounty hunters are forever students \ud83d\udcaf  @shifacyclewala #BugBounty #CyberSecurityMonth #infosec\n---\nYou can print them too :)  Collection link :  https://t.co/NRP2hCgLEN Do lemme know which one do you like most, in below Poll \ud83d\udc47\ud83d\udc47  In the spot :  - Burp Suite - Ref - XSS - IDOR - LFI - RFI - SSTI - H2C - HRS  #infosec #bugbounty #hackers #learn365  https://t.co/FRuyaaSEiF\n---\nWhile comparing between Tools that Get all URLs between Speed and No of URLs I found that  [+] gau is slower [+] gauplus is better than gau so use it [+] waybackurls is faster [+] hakrawler between all of them is speed and NO of URLs  #recon #BugBounty #Security  https://t.co/Hyw3ehwVcz", "creation_timestamp": "2021-10-28T13:37:04.000000Z"}