Hi everyone,

I am venkat, a cyber security engineer and Bughunter.

Here I will share how I got admin Dashboard access. I can say it is pretty straightforward.

while I’m testing on a target lets assume target.com, First enumerated every subdomain of target.com. there is an api.target.com, I decided to pentest on api.

I just open it in browser, blank response just target.com is displayed but below there is a link for admin panel.

I just opened it there is an login page for admin panel.

--

--

Venkatkiran

Venkatkiran

Cyber Security Engineer || penetration tester || Bug Hunter || Learner