Tuesday , March 28 2023
Breaking News
Home / Info Sec / Serious security flaw in Yahoo discovered, researchers received only $12.5

Serious security flaw in Yahoo discovered, researchers received only $12.5

Clifford Trigo October 1, 2013 Info Sec Leave a comment 37 Views


Security researchers from “High Tech Bridge” revealed recently they have found serious security flaw in Yahoo’s 2 official domains.

September 23, the researchers reported to Yahoo security team of XSS vulnerabilities affecting the ecom.yahoo.com and adserver.yahoo.com domains.

The Yahoo security flaw accordingly can allow hackers to compromise any “@yahoo.com” email account and what required is only clicking a specially-crafted link received in an email.

Eventually, the security flaw was fixed by Yahoo security team. The best part there, security researchers from “High Tech Bridge” received a reward as part of Yahoo’s bug bounty program.

A meager $12.5! Another worth noting, the reward can only be used in “Yahoo Company Store.”

http://grahamcluley.com/2013/09/serious-yahoo-bug/

The vulnerabilities are all patched as of now.

Source: GrahamCluley

Tags

About Clifford Trigo

Hi there! I am Clifford Trigo from the island of Bohol, come over here and lets have fun! :3 Just keep reading :D
Clifford Trigo : Web Application Security Researcher :)
© Copyright 2023, https://www.pinoyhacknews.com!