A bug bounty is a monetary prize an organization offers to moral programmers for finding weaknesses. A Capture the Flag, or CTF, is a game where programmers contend to discover messes with and tackle security puzzles. Bug bounty programs use installments to boost programmers from around the world to scrutinize frameworks. There is no restriction to the quantity of bugs programmers can uncover, making a difficult and broad chance for programmers.
Here is the list of most awarded vulnerabilities for Bug Bounty Hunter
- Cross-site Scripting (XSS)
- Improper Access Control
- Information Disclosure
- Server-Side Request Forgery (SSRF)
- Insecure Direct Object Reference (IDOR)
- Privilege Escalation
- SQL Injection
- Improper Authentication
- Code Injection
- Cross-Site Request Forgery (CSRF)