dekeeu Posted March 19, 2015 Report Share Posted March 19, 2015 A raportat cineva vulnerabilit??i c?tre Vimeo: https://hackerone.com/vimeo ? Care a fost timpul aproximativ de r?spuns / fix ?Am o vulnerabilititate destul de important? trimis? de 2 luni la ei, care are în continuare statusul de "New (Open)" ?i care înc? func?ioneaz? (ca idee îmi permite s? v?d videoclipuri private/ascunse/protejate cu parol?). Am trimis 5 mesaje consecutive c?tre ei, în ultimul de acum 1 s?pt?mân? spunându-le c? o fac public? dac? nu primesc r?spuns, ?i desigur n-am primit. Quote Link to comment Share on other sites More sharing options...
TheTime Posted March 19, 2015 Report Share Posted March 19, 2015 Eu, acum 4 luni. E vorba de cateva erori SQL si ceva info disclosure. Nimic exploatabil, nimic foarte grav. Mi-au multumit, m-au pus in HoF, dar n-au mai zis nimic de atunci si nu au reparat. Status: Triaged (Open) Quote Link to comment Share on other sites More sharing options...
Active Members 0xStrait Posted March 19, 2015 Active Members Report Share Posted March 19, 2015 Am un prieten care a raportat un xss persistent au raspuns in 3 zile dar a primit duplicate. Poate is ocupati plme stie, nu te enerva nu are rost daca e sa vina banii pot veni si mai tarziu Quote Link to comment Share on other sites More sharing options...
Nytro Posted March 19, 2015 Report Share Posted March 19, 2015 Fa public. 90 days policy de la Google Project Zero e cam mult. dekeeu's Disclosure Policy: 30 days. Quote Link to comment Share on other sites More sharing options...