1. Главная
2. Tech Raj

This bug was found by David Schütz.
Check out his write up on his blog: https://bugs.xdavidhu.me/google/2021/...

This bug that existed in Google's backend API allowed an attacker to watch a private video on youtube without having the required permissions. The attacker can view the youtube video by stealing it one frame at a time.
This bug existed in an embedded YouTube player on Google Ads. The Google Ads feature "Moments" was exploited to steal individual thumbnails (or frames) of any private video, which can be combined to form the video.

Google awarded 5000$ reward for this discovering this bug to the author David Schütz.

Join my Discord Server:   / discord  
Follow me on Instagram:   / teja.techraj  
Follow on Twitter:   / techraj156  

Website: https://techraj156.com
Blog: https://blog.techraj156.com

play_arrow

274

20

Лептоспироз. Квантовая биология - надежность в лечении и уверенность в результатах.

play_arrow

248,856

8.8 тыс

YUSUF YUZLÜ (YUSUF) HOCAMIZ VEFAT ETMİŞTiR Ruhuna Fatiha

play_arrow

43,992

280

Camp Nowhere (1994) - Theatrical Trailer

play_arrow

246

5

Episode 1: Blaze of Glory - Drewboy

play_arrow

31,528

489

Tableau Vs Looker - Which Dashboard Tool Is Best? -Modern Data Infrastructure

play_arrow

1,260

41

[FREE] Pop Punk Type Beat "Lucy"

play_arrow

37

1

Tambal 24 ban😂

play_arrow

7,601

like

Романс/Курт Сеит и Александра