bug-bounty458
google364
microsoft314
facebook272
xss250
apple179
malware176
rce165
exploit141
cve111
account-takeover104
bragging-post101
phishing84
privilege-escalation81
csrf81
supply-chain68
stored-xss65
authentication-bypass63
dos63
browser62
reflected-xss57
react54
cloudflare51
reverse-engineering49
cross-site-scripting48
input-validation48
aws48
docker47
node47
access-control47
smart-contract45
web343
ethereum43
sql-injection43
web-security42
ssrf42
defi42
web-application41
oauth37
writeup37
race-condition36
burp-suite35
vulnerability-disclosure34
info-disclosure34
idor34
html-injection33
cloud33
auth-bypass33
lfi32
smart-contract-vulnerability32
0
8/10
bug-bounty
A researcher discovered an SSRF vulnerability in Vimeo's API Playground by chaining path traversal in user-controlled URL variables with an open redirect to escape the api.vimeo.com domain, ultimately leveraging the Google Cloud metadata API to extract service account tokens with compute, logging, and storage scopes.
ssrf
server-side-request-forgery
path-traversal
open-redirect
code-execution
api-security
google-cloud
metadata-api
service-account-token
bug-bounty
api-playground
http-redirect-following
Vimeo
Harsh Jaiswal
Google Cloud
André Baptista
Brett (bbuerhaus)
HackerOne
Google Compute API
Kubernetes