Back to directory
WRITEUP #1757

[ GCP 2022 ] Few bugs in the google cloud shell

CSRFStored XSSFile uploadOAuth
byObmi
Bounty
20,000
Program
Google
Published
Dec 26, 2022
Added to HackDex
Jul 12, 2023
Read Full Writeuphttps://obmiblog.blogspot.com/2022/12/gcp-2022-few-bugs-in-google-cloud-shell.html
RELATED WRITEUPS
AI Under Siege: Discovering and Exploiting Vulnerabilities
AI / LLMAI
Spip Preauth RCE 2024: Part 2, A Big Upload
RCEFile upload
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
How I Got $250 For My Second Bug on HackerOne
OAuthSession expiration issue
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover

Built with ❤️ by Shubham Rawat