Web Application Security
Yahoo SiteBuilder RCE Feb 01 2014 02:59AM
Mark Litchfield (mark securatary com)
Full details posted at http://www.securatary.com/vulnerabilities with
the usual screen shots.

Apparently this vulnerability never existed the POC now produces a 404,
nothing to do with the fact that it has already been fixed of course.

I hope other researchers are not experiencing the same type of issue I
have. Hopefully with Yahoo handing off the Bug Bounty program to
HackerOne, the process should be a lot better.

All the best

Mark Litchfield

This list is sponsored by Cenzic
--------------------------------------
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now!
http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus