WebApp Sec mailing list archives
Yahoo SiteBuilder RCE
From: Mark Litchfield <mark () securatary com>
Date: Fri, 31 Jan 2014 18:59:17 -0800
Full details posted at http://www.securatary.com/vulnerabilities with the usual screen shots.
Apparently this vulnerability never existed the POC now produces a 404, nothing to do with the fact that it has already been fixed of course.
I hope other researchers are not experiencing the same type of issue I have. Hopefully with Yahoo handing off the Bug Bounty program to HackerOne, the process should be a lot better.
All the best Mark Litchfield This list is sponsored by Cenzic -------------------------------------- Let Us Hack You. Before Hackers Do! It's Finally Here - The Cenzic Website HealthCheck. FREE.Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus
--------------------------------------
Current thread:
- Yahoo SiteBuilder RCE Mark Litchfield (Jan 31)