Bug bounty Hunter

Any suggestion on which flaw to hunt on ,just like a poll, which do u think is easy to find or most common to see in webapps generally in bugcrowd and hackerone.
For me csrf,xss .If you can share your methodology it would be great!!

These might be helpful:

1 Like