achievement_unlocked
@gorka ha resuelto
Client-Side Path Traversal to Admin Password Change
BBLABS.ESLab Resuelto
DifícilVDP
// achievement_unlocked
Client-Side Path Traversal to Admin Password Change
Path Traversal
may 2026
solved_by@gorkaMiembro desde mar 2026
bblabs.es// real bug bounty practice
dificultad
Difícil
posición
#4
completados
6
sobre_el_hacker
El track record de @gorka
perfiles_de_@gorkaH1 gorkaaa
labs resueltos
24
flags capturadas
7
// últimos labs resueltos
Difícil$4,450
Business Logic Error - Payment Bypass via Client-Side Trust Abuse
may 2026
Insane$1,200
Stored XSS to Domain Takeover
abr 2026
Media$1,000
Payment Bypass via Business Logic Flaw
abr 2026
Media$750
self_svg_XSS — Self-XSS → Bot-Assisted ATO via SVG upload
abr 2026
Media$750
Stored XSS via SVG File Upload
abr 2026
Insane$600
DOM XSS via postMessage → eval (cross-origin admin pwn)
may 2026