Back to directory

WRITEUP #3677

[Google VRP] Privilege escalation on https://dialogflow.cloud.google.com

Logic BugBroken authorizationLogic flaw

by@0x01alka(lalka)

Bounty

3,133.70

Program

Google

Published

Jun 13, 2021

Added to HackDex

Sep 15, 2022

Read Full Writeuphttps://0x01alka.medium.com/google-vrp-privilege-escalation-on-https-dialogflow-cloud-google-com-599af6c4516d

▸ RELATED WRITEUPS

Logic Flaw: I Can Block You from Accessing Your Own Account

Logic BugLogic flaw

“Like” Bypass on Customer Reviews — €500 bounty

Logic BugLogic flaw

CVE-2024-45195: Apache OFBiz Unauthenticated Remote Code Execution (Fixed)

RCEForced browsing

How 1 Exposed Honeywell API Gave us Control Over an Internal Engineering System

ReconMissing authentication

Interesting Business Logic Error leads to Pre-Account Takeover via Verification bypass on GoogleVRP

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat