Background Findings vulnerabilities like XXE in bug bounty programs are awesome. I have found one XXE bug on private bug bounty program by converting the JSON request to XML request. It was very awesome so though to share with you all. Technial Details After fuzzing with the request and responses, I was encountered with the … Continue reading XXE For Fun and Profit – Converting JSON request to XML