How i found the xss on hackerone vdp program?

Hola! everyone, i am back with another write up.

i hope its useful for someone, who are in bugbounty field.

lets start,

its hackerone vdp program,it has only three main domains in scope.

then, i start automation on three domains…..like

waybackurls

google dorking

github dorking

shodan dorking

nuclei automation

i tried every automation method,but nothing was i got.

then i decide to do active and manual hunting,so i was opened

the burp suite and start exploring the three domains as like normal user.

here one thing i observed two domains are redirected remaining one

domain,so i decided to hunt on that domain.

lets name it as “doordie.com”

its online electronic ecommerce website,i tried for

parameter tampering

otp bypass for login

csrf for update profile

idor for sensitive information

sql injection

but nothing i got,so i was decide to crwal the domain for hidden urls.

so using burp spider, i started crawling, surprisingly i got more parameter based urls.