bug-bounty506
xss285
rce141
bragging-post119
account-takeover104
google96
open-source93
exploit88
csrf85
authentication-bypass80
stored-xss74
facebook74
privilege-escalation70
microsoft68
access-control67
ai-agents64
web-security63
reflected-xss63
cve60
writeup58
input-validation52
ssrf50
sql-injection49
smart-contract48
defi48
cross-site-scripting47
tool46
ethereum45
privacy44
information-disclosure44
malware42
api-security41
web-application38
llm37
phishing37
burp-suite36
opinion36
lfi35
automation35
smart-contract-vulnerability33
infrastructure33
web333
responsible-disclosure33
html-injection33
apple33
vulnerability-disclosure33
machine-learning32
code-generation31
oauth31
waf-bypass31
0
7/10
bug-bounty
A researcher demonstrates exploiting a race condition vulnerability in a referral/invite system by sending multiple simultaneous coupon code requests using Turbo Intruder, allowing a single user to be counted as multiple invitees and fraudulently claim rewards.
race-condition
concurrency
bug-bounty
referral-abuse
invitation-code
turbo-intruder
burp-suite
timing-attack
go-concurrency
mutex
goroutines
exploitation
Turbo Intruder
Burp Suite
Bugcrowd
Go
V7nc3nz