I Earned $3500 and 40 Points for A GraphQL Blind SQL Injection Vulnerability. | by nav1n🍥 | Mar, 2023 | Medium
Hammad 🇵🇰 on Twitter: "Found another SQLi on @Bugcrowd 's private program #ItTakesACrowd #BugBounty #bugbountytips #bugbountytip Tip: Use this payload 0'XOR(if(now()=sysdate(),sleep(15),0))XOR'Z In the value of every parameter and check if response ...