Back to directory

WRITEUP #6192

Uber Bug Bounty: Gaining Access To An Internal Chat System

Auth BypassSAMLAuthentication bypass

byMichael Reizelman

Bounty

8,500

Program

Uber

Published

Oct 13, 2017

Added to HackDex

Feb 1, 2024

Read Full Writeuphttps://mishresec.wordpress.com/2017/10/13/uber-bug-bounty-gaining-access-to-an-internal-chat-system/

▸ RELATED WRITEUPS

SAML Authentication Bypass Leading to Admin Panel Access

Auth BypassSAML

Breaking the Barrier: Admin Panel Takeover Worth $3500

Auth BypassAuthentication bypass

Breaking Down Barriers: Exploiting Authenticated IPC Clients

Auth BypassIPC client

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

Interesting Story of an Account Takeover Vulnerability

Auth BypassAccount takeover

Built with ❤️ by Shubham Rawat