13 matches found
Yahoo!: Yahoo! Reflected XSS
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: Default /docs folder of PHPBB3 installation on gamesnet.yahoo.com
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: Cross-origin issue on rmaiauth.ads.vip.bf1.yahoo.com
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: reflected XSS, http://extprodweb11.cc.gq1.yahoo.com/, 4/8/14, #SpringClean
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo ads.yahoo.com Cross Site Scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In Nov ?13 I reported a Cross-site Scripting vulnerability to the Yahoo Bug Bounty Program. As for my other reports, I?ve got no response or feedback, so I wrote a message to them via email this time ... and so on ... blah blah : To cut a long story...
Yahoo!: http://conf.member.yahoo.com configuration file disclosure
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: Local file inclusion
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: HTML Injection on flickr screename using IOS App
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Yahoo!: Bypass of anti-SSRF defenses in YahooCacheSystem (affecting at least YQL and Pipes)
Thank you for your submission to Yahoo’s Bug Bounty program. There were similar reports submitted, this report is marked as closed as the other reports will be triaged. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program. ...
Yahoo!: XSS using yql and developers console proxy
Thank you for your submission to Yahoo’s Bug Bounty. While we recognize the effort that you put into the research and writing of a report for us to evaluate, we found this report to be a duplicate of another. We appreciate your adherence to responsible disclosure guidelines and look forward to yo...
Yahoo! Open Redirect
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Advisory: Yahoo Bug Bounty Program Vulnerability 2 Open Redirect Advisory ID: SSCHADV2013-YahooBB-002 Author: Stefan Schurtz Affected Software: Successfully tested on ads.yahoo.com Vendor URL: http://yahoo.com Vendor Status: informed...
Yahoo is now offering up to $15,000 in bug bounty after policy review
Offering cash rewards for vulnerability reports has become something of a norm when it comes to big tech companies these days. Yahoo has changed its bug bounty policies following a deluge of negative feedback in the wake of the news that ethical hackers were rewarded with $12.50 in gift vouchers...
Yahoo mode Cross Site Scripting
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In Jan ?14 I reported three Cross-site Scripting vulnerabilities to the Yahoo Bug Bounty Program. And I know, it is really really hard, but ... again ... no feedback or bounty : Advisory: Yahoo Bug Bounty Program Vulnerability 4 5 6 Cross-site Scripti...