writeups.xyz / The Hunt for XXE to LFI: How I Uncovered CVE-2019–9670 in a Bug Bounty Program

Submitter : c2a

Date: 31 August 2024

Bounty : undisclosed

Vulnerabilities :

• XXE
• LFI
• Components With Known Vulnerabilities

Programs :

• Undisclosed

Authors :

• Karthikeyan.V (@Karthithehacker)

Link :
https://infosecwriteups.com/the-hunt-for-xxe-to-lfi-how-i-uncovered-cve-2019-9670-in-a-bug-bounty-program-5668e4afa806