1 Threads
😎 My first paid IDOR in Bug Bounty! It was in a REST API endpoint. It used an Authorization header with a Bearer token, but when I removed it from the request, it still responded...
Loading more...
Paste a thread URL like https://x.com/user/status/123456789 or just the tweet ID
https://x.com/user/status/123456789
