11:30 ... Bro consider the scenerio, ur a user1... victim is user2, neenga user2 cookie ya vechu user1 la privilege escalate aagitinga... Bypassed um aagiduchu!!!.. now neenga report panumbothu company side la kepangalla bro... Ungaluku epdi user2 oda cookies kedachudhunu!! Xss trigger aana kooda chain of attack nu report pannalam... Idhan doubt bro 😀
Yes that's how you should report.. such bugs are most of the time has to be chained.. that's why we report this as medium,sometimes low too depending on impact (varies with every application). Always should analyse cvss ..
You can report. Because it's vulnerability.. but should mention the cvss correctly.. If there is SQL injection. Which is a critical vulnerability but there is only 1 table with no sensitive data and you can't even take shell, then it'll be low finding. That's why cvss is needed. ..
quality contents!
Hello sir This vulnerability Impact!! Tell me details please
Tnq very much...
Back to back, what a speed
kerberos attack potuga bro
11:30 ... Bro consider the scenerio, ur a user1... victim is user2, neenga user2 cookie ya vechu user1 la privilege escalate aagitinga... Bypassed um aagiduchu!!!.. now neenga report panumbothu company side la kepangalla bro... Ungaluku epdi user2 oda cookies kedachudhunu!! Xss trigger aana kooda chain of attack nu report pannalam... Idhan doubt bro 😀
Yes that's how you should report.. such bugs are most of the time has to be chained.. that's why we report this as medium,sometimes low too depending on impact (varies with every application). Always should analyse cvss ..
@@CyberBlackHole great 👍 bro !!! Power of CBH 😀
@@CyberBlackHole chain of attacks ilama report panna koodathang bro?
You can report. Because it's vulnerability.. but should mention the cvss correctly..
If there is SQL injection. Which is a critical vulnerability but there is only 1 table with no sensitive data and you can't even take shell, then it'll be low finding. That's why cvss is needed. ..
@@CyberBlackHole ooo thank you bro 😎😎
Bro enaku jython install agala bro ...Failed to open webbrowser Url lnkvarthu....
downlaod the jar file and give the path there.. there is no need to install it..
😍😍😍😍😍😍😍😍😍😍😍😍😍🔥🔥🔥🔥🔥🔥🔥🔥🔥🔥