Found this vulnerability when auditing other client. With this RFD you don’t need to create a page to force the download. The request for this Google […]
Companies that I’ve helped improve their security
Google, Yahoo!, eBay, Microsoft, Etsy, Nexmo, Weebly, Edmodo, HackerOne, Desk, Adobe, ArubaNetworks, Condé Nast, Linkedin, Acunetix, SendGrid, Rocky Bytes, DepositFiles, Workable, MailChimp, Prestashop, HP, Kaspersky, […]
Google Reflected Filename Download
I found a critical issue on Google that can be used by malicious users to hijack victims computer using Google domain as platform and trust […]