Jump to content
akkiliON

[SQLi Login Bypass] yahoo.net

Recommended Posts

  • Active Members

Salut tuturor,

A trecut o vreme de când n-am mai facut show-off. În data de 05.09.2014 (27 zile) am g?sit o vulnerabilitate în https://tw.admin.gamedb.games.yahoo.net ! Mai exact, am g?sit un SQL Injection în panoul de logare de la admin iar pân? la urm? am reusit sa fac bypass ! A?a am luat acces la site ?i puteam s? modific/uploadez ce vroiam eu. :)

Din p?cate vulnerabilitatea care am raportat-o nu a fost eligibil? pentru o recompens?.

This report is not eligible for a bounty because it is not within the scope for an award. However, the report is still considered when calculating your overall rank in the Hall of Fame.

Dovad?:

2yuazib.jpg

P.S: Se pare c? am fost ad?ugat în lista cu Top Hackers de la Yahoo. [ https://hackerone.com/yahoo ]

Mul?umesc pentru timpul acordat.

  • Upvote 3
Link to comment
Share on other sites

  • Active Members

Am scris mai sus c? nu m-am încadrat.

This report is not eligible for a bounty because it is not within the scope for an award. However, the report is still considered when calculating your overall rank in the Hall of Fame.

b3hr0uz a fost recompensat pe 2 vulnerabilit??i grave care le-a g?sit în yahoo.net. Nu e singurul care a fost recompensat. Am dat doar un exemplu.

https://hackerone.com/reports/2127 - HK.Yahoo.Net Remote Command Execution.

https://hackerone.com/reports/3039 - SQL Injection ON HK.Promotion

Asta e.

Ce zici de asta ? https://hackerone.com/reports/4836

Link to comment
Share on other sites

https://hackerone.com/reports/4836 ce bulshit de retarzi el a urcat shell si ei The analytics team confirmed that this bug did not actually allow the output to be executed. asta dupa ce au reparat - fenomenal

Edit: // lol nu vazusem si pe asta https://hackerone.com/reports/2127 :)))))))

Yahoo! rewarded askwrite with a bounty. About 17 hours ago

Edited by robertutzu
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...