achievement_unlocked
@pl4nkton ha resuelto
0-click-ATO — Account Takeover via OTP Brute Force + Email Case-Sensitivity Bypass
BBLABS.ESLab Resuelto
Insane$600
// achievement_unlocked
0-click-ATO — Account Takeover via OTP Brute Force + Email Case-Sensitivity Bypass
API Abuse
jun 2026
solved_by@pl4nktonMiembro desde may 2026
bblabs.es// real bug bounty practice
dificultad
Insane
posición
#11
completados
12
sobre_el_hacker
El track record de @pl4nkton
labs resueltos
50
flags capturadas
26
// últimos labs resueltos
Difícil$4,450
Business Logic Error - Payment Bypass via Client-Side Trust Abuse
jun 2026
Insane$1,500
Wizard Takeover ATO ( IDOR + CSRF )
jun 2026
Insane$1,200
Stored XSS to Domain Takeover
jun 2026
Media$1,000
Payment Bypass via Business Logic Flaw
jun 2026
Media$750
self_svg_XSS — Self-XSS → Bot-Assisted ATO via SVG upload
jun 2026
Media$750
Stored XSS via SVG File Upload
jun 2026