Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Hacker One
Hacker Oneadded 2020/09/11 6:47 a.m.17 views

Shipt: Api Token Leaked in [shoppers.shipt.com]

A researcher reported an API key stored in source code that was part of a 3rd party knowledge base integration. The Shipt information security team immediately investigated the report and determined that the API key referenced was a legacy token that was no longer being used. While it didn't...

1.5AI score
Exploits0
Hacker One
Hacker Oneadded 2020/08/27 2:13 p.m.113 views

Shipt: bypass the [OKTA] login redirect can lead to disclosing limited-information about the sub-domain at [ shiptsec.com ]

A security researcher identified limited and non-sensitive information disclosure for one of our public-facing tools that is used by internal users. While the risk was very low and nothing was directly exploitable, we went ahead and made the quick change to mitigate this behavior. We made the...

0.5AI score
Exploits0
Hacker One
Hacker Oneadded 2018/11/22 3:10 p.m.14 views

Shipt: Slack token leaking in stackoverflow and devtimes

A Shipt employee inadvertently posted a Slack Webhook URI including the authentication token on two public tech forums: Stackoverflow.com and devtimes.com. While this incoming webhook's configuration was restricted to posting in a single channel created for testing this application and only 2 Shi...

3.1AI score
Exploits0
Hacker One
Hacker Oneadded 2018/08/02 9:33 p.m.29 views

Shipt: Subdomain takeover at segway.shipt.com

A security researcher identified a stale DNS record that pointed to a legacy 3rd party service. This allowed for a subdomain takeover, which the researcher provided a well written and detailed Proof of Concept POC. Shipt's security team acted immediately to validate the vulnerability and remove t...

1.2AI score
Exploits0
Hacker One
Hacker Oneadded 2018/02/19 6:55 a.m.6 views

Shipt: Any user can completely delete their own account without authorization and/or going through any kind of membership cancellation protocol.

A security researcher identified an endpoint that allowed Shipt Members to delete their own account by intercepting an HTTP request, changing the HTTP method to DELETE, and forwarding the request, bypassing the normal membership cancellation protocol. This endpoint did not allow for modifying oth...

1.5AI score
Exploits0
Hacker One
Hacker Oneadded 2017/04/08 6:19 a.m.17 views

Shipt: Open redirect on marketing site

Security researcher identified an open redirect vulnerability in www.shipt.com. Shipt's security and engineering teams quickly responded and addressed the issue...

1.4AI score
Exploits0
Rows per page
Query Builder