Detectify Crowdsource, a community of ethical hackers, contributes new vulnerabilities that are integrated into automated security tests for users, and the Vuln of the Month series highlights notable vulnerabilities like CVE-2020-10148, the SolarWinds Orion Authentication Bypass. This critical zero-day vulnerability allowed attackers to bypass authentication, enabling them to execute unauthorized API commands and deliver the Supernova malware, as seen in a major attack on SolarWinds, a system used by 33,000 customers, including US government agencies and large corporations. The vulnerability can be exploited by manipulating the Request.PathInfo portion of a URI request to include specific parameters, which may cause SolarWinds to process the request without authentication. Detectify assists by scanning for this vulnerability in SolarWinds Orion users' applications and providing alerts if detected, urging users to start a free trial or check existing accounts to secure their assets.