Back to directory
WRITEUP #6400

Uber Hacking: How we found out who you are, where you are and where you went

RCEBruteforceInformation disclosureLogic flawIDOR
by@r0t1v(Vitor “r0t” Oliveira)
Bounty
18,000
Program
Uber
Published
Jun 24, 2016
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://medium.com/@r0t1v/uber-hacking-how-we-found-out-who-you-are-where-you-are-and-where-you-went-1e0769674535
RELATED WRITEUPS
Vulnerabilities in Homepage Dashboard
RCESSRF
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE
Unlocking the Weak Spot: Exploiting Insecure Password Reset Tokens
RCEBruteforce
Vulnerabilities in Open Source C2 Frameworks
RCEOS command injection
[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package
RCEDependency confusion

Built with ❤️ by Shubham Rawat