Monday, February 29, 2016

Reflected XSS in auto.mail.ru

I have found a reflected XSS in auto.mail.ru. The bug was easy to exploit since you will only enter the XSS payload into the searchbar. I have reported it to mail.ru via HackerOne and was resolved within a few days. I was also listed in their Hall of Fame as thanks. https://hackerone.com/reports/109373


 POC:

 

Saturday, February 27, 2016

My list of Recognitions (Hall of Fame)

As of February 2016, I have found many vulnerabilities and got listed in big companies' Hall of Fame thanks list. Below are the companies that I have reported vulnerabilities and got recognized:

*Facebook
*Google
*AT&T
*Microsoft  
*Edmodo
*Github 
*US - CERT Department of Homeland Security
*Romit
*Adobe
*Snapchat
*Yahoo
*Apple
*Mail.ru
*Khan Academy
*Urban Dictionary
*Slack
*WePay
*Heroku
*Pinterest
*Zendesk
*SendSafely
*ProtonMail
*BlinkSale
*Tagged/Hi5
*Spokeo
*Magento

Wednesday, February 24, 2016

Subdomain Takeover in Snapchat

I have found a subdomain takeover in Snapchat's acquisition, scan.me. Scan.me is currently integrated into Snapchat application. The vulnerable subdomain was support.scan.me pointing to Zendesk. I have reported it to Snapchat and was fixed quickly and rewarded me with a bounty and made me the Top 5 hacker in their thanks list. Here is the link of my report:  https://hackerone.com/reports/114134 


Reward:

$1000