10 matches found
Google Triples Some Bug Bounty Payouts
Google is upping the ante for its Chrome bug bounty rewards program, doubling payouts from $15,000 to $30,000 for “high-quality” reports. It is also tripling baseline payouts for Chrome to $15,000. The bug-bounty pay raise is part of Google’s Chromium open-source project, which supplies the vast...
Zomato: [Zomato for Business Android] Vulnerability in exported activity WebView
Hello, i want to report the vulnerability found, Since the following activity com.application.zomatomerchant.home.HomeSalt has exported="true" it can be exploited by another application. Application Information Application: Zomato for Business Package Name: com.application.zomatomerchant Version:...
QIWI: [QIWI Wallet] Access to protected app components
Здравствуйте, я хочу сообщить об обнаруженной уязвимости в классе ru.mw.main.Main Информация о приложении Приложение: QIWI Кошелек Имя пакета: ru.mw Номер версии: 3.25.0 Код версии: 21346 Актуальность версии: Последняя Уязвимый класс: ru.mw.main.Main Уязвимость Поскольку активность ru.mw.Main...
Bug bounty open for Opera Android apps!
News Bug bounty open for Opera Android apps! Share November 20th, 2018 We are happy to announce that our applications are now covered by the Google Play Security Reward Program. Researchers are invited to help us improve the security of our chosen products in return for fame and up to $5,000!...
Google Expands Play Marketplace Bug Bounty Program
UPDATE Google is expanding the number of bounties available in its Google Play Security Reward Program, a step that comes amid a flurry of mitigation activities against malicious apps found in its official marketplace. The company introduced the program in October, in a long-awaited move...
Google Fixes Four Critical Vulnerabilities in Latest Chrome Build
Google pushed out the latest version of Chrome Thursday afternoon, fixing five issues, four of them critical. The update remedies an out-of-bounds read in Chrome’s open source JavaScript engine V8, two use-after-free vulnerabilities – one in Navigation and one in Extensions – and a buffer overflo...
PayPal Inc Bug Bounty #117 - Session Fixation Vulnerability
Document Title: =============== PayPal Inc Bug Bounty 117 - Session Fixation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1509 EIBBP-31983 P2 Video: http://www.vulnerability-lab.com/getcontent.php?id=1615 Vulnerability Magazine:...
PayPal Inc Bug Bounty #117 - Session Fixation Vulnerability
Document Title: =============== PayPal Inc Bug Bounty 117 - Session Fixation Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1509 EIBBP-31983 P2 Video: http://www.vulnerability-lab.com/getcontent.php?id=1615 Vulnerability Magazine:...
Google Fixes More Than a Dozen Flaws in Chrome 27
Google has released Chrome 27, a new version of its browser that includes a long list of security fixes, many of which are for high-risk vulnerabilities. The company handed out more than $14,000 in rewards to researchers who reported bugs fixed in the latest iteration of Chrome. Google’s security...
Google Chrome HTTPS Address Bar Spoofing
Google awarded one of our security researchers a Chromium Security Reward for an HTTPS address bar spoofing bug in Chrome 14 and 15 although it may be present in older versions too. The bug was fixed in Chrome 16, most browsers seem to be updated and we're happy to share technical details with th...