Home page logo

webappsec logo WebApp Sec mailing list archives

Yahoo SiteBuilder RCE
From: Mark Litchfield <mark () securatary com>
Date: Fri, 31 Jan 2014 18:59:17 -0800

Full details posted at http://www.securatary.com/vulnerabilities with the usual screen shots.

Apparently this vulnerability never existed the POC now produces a 404, nothing to do with the fact that it has already been fixed of course.

I hope other researchers are not experiencing the same type of issue I have. Hopefully with Yahoo handing off the Bug Bounty program to HackerOne, the process should be a lot better.

All the best

Mark Litchfield

This list is sponsored by Cenzic
Let Us Hack You. Before Hackers Do!
It's Finally Here - The Cenzic Website HealthCheck. FREE.
Request Yours Now! http://www.cenzic.com/2009HClaunch_Securityfocus

  By Date           By Thread  

Current thread:
  • Yahoo SiteBuilder RCE Mark Litchfield (Feb 01)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]