sensi Posted January 23, 2014 Report Posted January 23, 2014 • Exploit: *.yahoo.com - URL redirection• Author: sensi• Status: Reported• PoC: Quote
tromfil Posted January 23, 2014 Report Posted January 23, 2014 Sunt foarte multe, dar din ce ?tiu nu sunt viabile pentru bug bounty. Nu? Quote
sensi Posted January 23, 2014 Author Report Posted January 23, 2014 Ba da. akkiliON a raportat un SCD + URL redirection si a primit reward. //@askwrite, nu. Quote
tromfil Posted January 23, 2014 Report Posted January 23, 2014 (edited) Atunci s? raport?m, zic. Mersi. PS: bravos! Edited January 23, 2014 by tromfil Quote
Eminemu Posted January 23, 2014 Report Posted January 23, 2014 Partea de la sfarsit cu /* stiu ca o folosesc pentru click tracking cand servesc un ad. Nu este vorba de aceeasi situatie, nu?Exemplu:http://clicks.beap.bc.yahoo.com/yc/bv=1.0.0&bs=(16r2gto1r(gid$6752kjc3LjLSDFIpUgNxowgJODYuMVLhCesAAAAA,st$1390479852247167,si$4401032,sp$2143930004,cr$2750221532,v$2.0,aid$wK3kc9RSZxA-,ct$25,ybx$VTYRL8dCA0uVsvMBs7eepA,bi$195335532,r$3,rd$16hk0mc2l,yoo$1,agp$248239532,ap$FPAD))&id=clickTAG_mpu2&r=16/*https://rstforums.com Quote
sensi Posted January 23, 2014 Author Report Posted January 23, 2014 Ba da, tot ceva cu /*...astept sa-mi raspunda. Quote
florin_darck Posted January 23, 2014 Report Posted January 23, 2014 Am luat 250 $ pe url redirection. Dar cel mai probabil va fi duplicate Quote
