Mail.ru: [babel.mail.ru] Admin Page Found

Access to babel.mail.ru admin page was not sufficiently filtered, allowing accounts bruteforcing. bable.mail.ru is not directly listed in the bug bounty scope, but this vulnerability could affect projects in the scope...

Mail.ru: [evo2.my.com] Reflected XSS

Browser-specific reflected XSS via POST parameters in evo2.my.com. evo2.my.com is not covered by bug bounty scope...

Mail.ru: [games.my.com] Reflected XSS

Browser-specific reflected XSS via URI parameters in games.my.com. games.my.com is not covered by bug bounty scope...