Heroku Bug Bounty Program 2015 - Persistent Invitation Vulnerability & Video
Vulnerability researchers of the evolution security gmbh team discovered two application-side vulnerabilities in the official heroku api and online-service web application. The issue has been discovered to the official bug bounty program of heroku in 2014Q4.
During the last week the updates has been confirmed by officials of the company after the famous bug bounty hunter disclosed a video that demonstrates the issue to the developer team. The second issue has the same impact with another location (deep dive). We only insert the link at the buttom that becomes available in some hours.
Advanced Persistent Threat Golden_hands - Digital Bank Robbery of the Year 2020
Facebook Security - 12.500$ Bug Bounty reward to Security Researcher
Bug Bounty Program Award Winners 2014 - Exclusive Interview by Microsoft & PayPal
Shopify | Buy Button | Persistent Embed POST Inject Vulnerability