dekeeu Posted July 29, 2013 Report Posted July 29, 2013 Title: Blind SQLi Billmelater - PaypalAffected Product: Billmelater - PaypalSeverity: HighStatus: Fixed (duplicat) 1 Quote
TheTime Posted July 29, 2013 Report Posted July 29, 2013 Duplicat? Asta inseamna ca nu ti-au dat nimic pe el? Quote
dekeeu Posted July 29, 2013 Author Report Posted July 29, 2013 Duplicat? Asta inseamna ca nu ti-au dat nimic pe el?Niet. Quote
daatdraqq Posted July 29, 2013 Report Posted July 29, 2013 Duplicat pe pula mea ,daca e duplicat de ce nu l-au reparat ?Mie tocmai mi-au raspuns ca un xss in Billmelater.com e in afara programului bug bounty. Au probleme de personalitate . Quote
Active Members akkiliON Posted July 29, 2013 Active Members Report Posted July 29, 2013 Duplicat pe pula mea ,daca e duplicat de ce nu l-au reparat ?Mie tocmai mi-au raspuns ca un xss in Billmelater.com e in afara programului bug bounty. Au probleme de personalitate .A?tept de 13 zile pt 2 xss-uri ?i nici nu m? bag? în seam?.Tot îmi zic c? e in stare de prezentare. Le-am g?sit în Paypal.ON: Bravo. Quote
malsploit Posted July 29, 2013 Report Posted July 29, 2013 Duplicat pe pula mea ,daca e duplicat de ce nu l-au reparat ?Mie tocmai mi-au raspuns ca un xss in Billmelater.com e in afara programului bug bounty. Au probleme de personalitate .Trebuia sa le trimiti un printscreen cenzurat si daca iti comentau ceva, cum ca e in afara programului, ii intrebai daca e in regula sa-l publici, Garantez ca isi schimbau pozitia. Quote
daatdraqq Posted July 29, 2013 Report Posted July 29, 2013 Trebuia sa le trimiti un printscreen cenzurat si daca iti comentau ceva, cum ca e in afara programului, ii intrebai daca e in regula sa-l publici, Garantez ca isi schimbau pozitia.Exact asta am facut ,astept raspuns . Am mai trimis unul si mi-au raspuns in 2 minute ca l-au trimis la inginerii pizdii sa-l verifice.2 xss-uri in acelasi site ,unu imi raspunde ca nu se incadreaza (atentie ,site-ul nu se incadreaza) si una imi raspunde ca verifica . Quote
Active Members akkiliON Posted July 29, 2013 Active Members Report Posted July 29, 2013 Daca raportati, asa va trebuie.Platesti tu mai mult decat bug bounty-ul lor ? Quote
dekeeu Posted July 29, 2013 Author Report Posted July 29, 2013 Daca raportati, asa va trebuie.Eu prefer sa fiu `white hat` caci prezinta cele mai mari avantaje si cele mai mici riscuri: faima(cat se poate)+bani(nu sunt multi, dar cand ii vezi la tine in buzunar, te simti foarte ok)+siguranta(cel mai important dintre toate), de aceea raportez tot ce gasesc. Nu zic ca asta ar trebui sa aleaga si ceilalti, fiecare e pe cont propriu si are propiile motive aleaga ce variante doreste. Quote
RoEx Posted July 29, 2013 Report Posted July 29, 2013 off: ce ma enerveaza fake bug bounty-ul pizdisunt curios daca ne punem pe paypal pentru cateva zile sa postam pe google cateva xss-uri "duplicate" ce reactie or avea.on: bravo Quote
daatdraqq Posted August 7, 2013 Report Posted August 7, 2013 Hi #######, Thank you for participating in the PayPal Bug Bounty Program. We regret to inform you that your bug submission was not eligible for a bounty. This type of submission is out of scope as it is managed by TheFind, not PayPal.Cine dracu e TheFind ? Quote
nSnoopy Posted August 7, 2013 Report Posted August 7, 2013 Hi #######, Thank you for participating in the PayPal Bug Bounty Program. We regret to inform you that your bug submission was not eligible for a bounty. This type of submission is out of scope as it is managed by TheFind, not PayPal.Cine dracu e TheFind ?Probabil TheFind UK - Shopping Search for the United Kingdom! Quote
daatdraqq Posted August 7, 2013 Report Posted August 7, 2013 Probabil TheFind UK - Shopping Search for the United Kingdom!Pai si ce treaba am eu cu aia daca eu am trimis SQLI in billmelater.com ? Quote
emeres Posted August 17, 2013 Report Posted August 17, 2013 eu platesc pt buguri la ebay si la paypal mai mult decat ei cine e interesat astept pm Sper ca nu am incalcat regulile Quote
