Back to directory

WRITEUP #3411

Bypassing GCP Org Policy with Custom Metadata

OtherBroken authorization

by@NightmareJS(Kat Traxler)

Bounty

1,337

Program

Google

Published

Sep 10, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://kattraxler.github.io/gcp/hacking/2021/09/10/gcp-org-policy-bypass-ai-notebooks.html

▸ RELATED WRITEUPS

Data Theft in Salesforce: Manipulating Public Links

OtherSOQL injection

When Certificates Fail: A Story of Bypassed MFA in Remote Access

Other2FA / MFA bypass

CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)

RCEForced browsing

SSTI in Bug Bounty Program: The Time I Played with Handlebars and Broke Stuff

Ghost In The Ppl Part 1: Byovdll

OtherUse-After-Free

Built with ❤️ by Shubham Rawat