This repository contains fully disclosed accepted reports of the null Ahmedabad's Bug Bounty CTF.
- Database Sensitive Information Disclosure in "/docker-compose.yml"
- Stored XSS in bio + CSRF leads to full account takeover
- Stored XSS + CSRF leads to full account takeover ( In Bio URL )
- xmlrpc.php FILE IS enable it can be used for Bruteforce attack
- CSRF in "Join Group" Button leads to send request to join Arbitrary group from victim's account
- All Group user account takover via Stored XSS
- xss
- SQLI at : https://social.barracks.army/group.php?group_id=
- CSRF while leave group leads to force victim to leave any group