View RSS Feed


Entries with no category

  1. Command Injection in #Google for which I got 6000$

    Hey all ,

    Few months back I found a command injection bug in Google Cloud shell

    Since the title goes by the name "command injection" , you all might be thinking it as "normal Command injection which affects servers" but this vulnerability is quite different.
    We can put this in different way as "Client Side command injection".

    Lets get into the finding

    While I was testing "" ...

    Updated 03-16-2016 at 02:08 PM by 41.w4r10r