Web vulnerabilities

The following is a list of some security vulnerabilities I’ve found on various websites. Some of them contain links to more detailed write-ups.

WebsiteProblemsRewardAcceptedFixedReferences
Google (googleplex.com)
XSS$YesYes
Google (google.org)
XSS$YesYes
Google (google.org)User data information disclosure$YesYes
Google (googleusercontent.com)Image data leak$YesNo
Google (google.com)401 phishing attack vulnNoneNoNo
Google (earth.google.com/studio)IDOR, Auth Bypass, Null Byte Filename InjectionNoneYesYesBlog
Google (earth.google.com)XSSNoneYesNo
Google (console.firebase.google.com)Auth Bypass$YesYesBlog
Google Code-in (codein.withgoogle.com)XSS$YesYesBlog
Google Code Jam (codejam.withgoogle.com)XSS$YesYesBlog
Google (g.co)Unrestricted API endpoint$Yes No
Google (CloudConnectCommunity.com)XSS (reflected, stored), Auth bypassNoneYesYes
Google (WebComponents.org)XSS$YesYesBlog
Google (business.google.com)Open redirectOBB, YouTube Video
Google Maps API (google.com)Unrestricted Google’s API key allowing quota theftNoneNoNo
Google Drive (drive.google.com)Unlimited drive storageNoneNoNo
heureka.czXSS (reflected, stored), CSRF, API authorization vulnerabilityT-Shirt, HQ visit, $YesYesArticle Czech
leoexpress.comXSS (reflected), API authorization vulnerabilityNoneYesYesOBB, Blog
mcdonalds.comXSS (reflected)NoneNoOBB, Blog
uloz.toXSS (stored)T-Shirts
YesYes
mall.czXSS (stored)NoneYesYesOBB
southwest.comXSS (reflected)NoneNo
vodafone.czXSS (reflected)NoneYesOBB
stahuj.czXSS (reflected)NoneNoOBB
aukro.czXSS (stored), unrestricted system directoriesNoneYes
mapy.czXSS (reflected)NoneYesNo
karaoketexty.czXSS (reflected)NoneNoNo
databazeknih.czXSS (reflected)NoneYesYes
hyperinzerce.czXSS (reflected, stored)NoneNoOBB
blibli.comXSS (reflected)NoneNoOBB
domcop.comXSS (stored)NoneYes
maxon-campus.netSQLiNoneYesBlog
ceskatelevize.czXSS (reflected)NoneYesOBB
yougapi.comXSS (reflected)NoneNoOBB
mobilmania.czXSS (reflected)NoneNoOBB
erec.com.hrXSS (reflected)NoneNoOBB
mujsoubor.czXSSNoneNoOBB
hotely.czXSS (reflected)NoneNoOBB
loupak.funXSS (reflected, stored)NoneYesYesOBB
topreality.skXSS (reflected)NoneNoOBB
ceskereality.czXSS (reflected)NoneNoOBB
centrum.czXSS (reflected)NoneNoOBB
landi.czXSS (reflected)NoneNoOBB

Open Bug Bounty, Google Vulnerability Reward Program