SilenTx0 Posted April 15, 2014 Report Share Posted April 15, 2014 Quote Link to comment Share on other sites More sharing options...
iHouse Posted April 15, 2014 Report Share Posted April 15, 2014 Mi-a placut asta, bravo, eu nu gasesc in site`uri simple o astfel de vulnerabilitate si tu ai luat jackpotu. Quote Link to comment Share on other sites More sharing options...
dekeeu Posted April 16, 2014 Report Share Posted April 16, 2014 Ai incercat sa te conectezi la baza de date ? Quote Link to comment Share on other sites More sharing options...
SilenTx0 Posted April 16, 2014 Author Report Share Posted April 16, 2014 Ai incercat sa te conectezi la baza de date ?N-am incercat dar nu cred ca permite remote connection. Quote Link to comment Share on other sites More sharing options...
kempactick Posted April 16, 2014 Report Share Posted April 16, 2014 On:Are tic-tac-n avatar.Ps: muie ubuntu ca se fute grubuOff: bravo silent Quote Link to comment Share on other sites More sharing options...
Castiel Posted April 16, 2014 Report Share Posted April 16, 2014 Felicitari , ai scos banii pe anu asta . Quote Link to comment Share on other sites More sharing options...
SilenTx0 Posted April 16, 2014 Author Report Share Posted April 16, 2014 Felicitari , ai scos banii pe anu asta .Posibil...mai am 20 buguri pe care astept raspuns. Quote Link to comment Share on other sites More sharing options...
Wired Posted April 16, 2014 Report Share Posted April 16, 2014 Sa postezi, sunt curios sa vad cat iti dau. Quote Link to comment Share on other sites More sharing options...
SilenTx0 Posted April 16, 2014 Author Report Share Posted April 16, 2014 Sa postezi, sunt curios sa vad cat iti dau. Am sa postez, dar cred ca va dura ceva. Se misca foarte greu cei de la Yahoo. Astept de o luna si ceva raspuns pe vreo 12 buguri... Quote Link to comment Share on other sites More sharing options...
Moderators Dragos Posted April 16, 2014 Moderators Report Share Posted April 16, 2014 Sunt o groaza de subdomenii de la ei care merg asa prost si afiseaza codul in loc sa-l execute. Nu sunt greu de gasit. Au migrat la un moment dat pe o versiune proprie de php sau asp si nu se mai executa php-ul simplu.Oricum, felicitari ca l-ai gasit si l-ai raportat. Quote Link to comment Share on other sites More sharing options...
florin_darck Posted April 16, 2014 Report Share Posted April 16, 2014 Am sa postez, dar cred ca va dura ceva. Se misca foarte greu cei de la Yahoo. Astept de o luna si ceva raspuns pe vreo 12 buguri...Si eu am deschise 8 dintre care 2 triaged.. Cel mai vechi este de o luna si nici macar nu s-au uitat peste el..Felicitari oricum Quote Link to comment Share on other sites More sharing options...
yo20063 Posted April 16, 2014 Report Share Posted April 16, 2014 Eu am open redirect pe care mi-au dat "won't fix", merge si acum dupa 1 luna cu acelasi token la toata lumea Le-am cerut public disclosure Inca nu au raspuns nimic Quote Link to comment Share on other sites More sharing options...
SilenTx0 Posted April 16, 2014 Author Report Share Posted April 16, 2014 Eu am open redirect pe care mi-au dat "won't fix", merge si acum dupa 1 luna cu acelasi token la toata lumea Le-am cerut public disclosure Inca nu au raspuns nimic Eu am un xss in flickr pe care am primit duplicate insa nici acum. dupa doua luni jumatate nu este reparat. Se misca foarte greu si nici nu iau raporturile in ordinea in care au fost raportate... Quote Link to comment Share on other sites More sharing options...
Gushterul Posted April 17, 2014 Report Share Posted April 17, 2014 Oricum Yahoo a stat cateva zile si cu Heartbleed bug. Se misca greu si nu prea sunt recunoscatori, dupa cum probabil ne mai aducem aminte de colegul de la Yahoo Openhack din Bucuresti:) Quote Link to comment Share on other sites More sharing options...