Yahoo! - HackerOne Bug Reports

Public Yahoo! bug reports.

4,419 Bug Reports - $2,030,173 Paid Out
Last Updated: 12th September, 2017

Team	Bounty	Title
Yahoo!	-	caesary.yahoo.net Blind Sql Injection
Yahoo!	$250	Yahoo! Reflected XSS
Yahoo!	$50	Default /docs folder of PHPBB3 installation on gamesnet.yahoo.com
Yahoo!	$200	Yahoo Sports Fantasy Golf (Join Public Group)
Yahoo!	-	Open Redirect via Request-URI
Yahoo!	-	Multiple vulnerabilities
Yahoo!	$100	Testing for user enumeration (OWASP‐AT‐002) - https://gh.bouncer.login.yahoo.com
Yahoo!	$50	Authorization issue on creative.yahoo.com
Yahoo!	-	http://us.rd.yahoo.com/
Yahoo!	-	TESTING FOR REFLECTED CROSS SITE SCRIPTING (OWASP‐DV‐001)
Yahoo!	$250	Infrastructure and Application Admin Interfaces (OWASP‐CM‐007)
Yahoo!	-	Authentication Bypass due to Session Mismanagement
Yahoo!	-	Yahoo! Messenger v11.5.0.228 emoticons.xml shortcut Value Handling Stack-Based Buffer Overflow
Yahoo!	-	Loadbalancer + URI XSS #3
Yahoo!	$300	information disclosure (LOAD BALANCER + URI XSS)
Yahoo!	$500	https://caldav.calendar.yahoo.com/ - XSS (STORED)
Yahoo!	$250	readble .htaccess + Source Code Disclosure (+ .SVN repository)
Yahoo!	$2,500	Local File Include on marketing-dam.yahoo.com
Yahoo!	-	clickjacking on leaving group(flick)
Yahoo!	-	ads.yahoo.com Unvalidate open url redirection
Yahoo!	$400	invite1.us2.msg.vip.bf1.yahoo.com/ - CSRF/email disclosure
Yahoo!	$500	XSS in https://hk.user.auctions.yahoo.com
Yahoo!	$250	Bypass of the Clickjacking protection on Flickr using data URL in iframes
Yahoo!	$2,000	Open Proxy, http://www.smushit.com/ysmush.it/, 4/09/14, #SpringClean
Yahoo!	$200	CSRF Token is missing on DELETE message option on http://baseball.fantasysports.yahoo.com/b1/127146/messages
Yahoo!	$400	CSRF Token missing on http://baseball.fantasysports.yahoo.com/b1/127146/messages
Yahoo!	$3,000	REMOTE CODE EXECUTION/LOCAL FILE INCLUSION/XSPA/SSRF, view-source:http://sb*.geo.sp1.yahoo.com/, 4/6/14, #SpringClean
Yahoo!	$500	Comment Spoofing at http://suggestions.yahoo.com/detail/?prop=directory&fid=97721
Yahoo!	$1,000	Header injection on rmaitrack.ads.vip.bf1.yahoo.com
Yahoo!	$250	Cross-origin issue on rmaiauth.ads.vip.bf1.yahoo.com
Yahoo!	$300	reflected XSS, http://extprodweb11.cc.gq1.yahoo.com/, 4/8/14, #SpringClean
Yahoo!	$500	Significant Information Disclosure/Load balancer access, http://extprodweb11.cc.gq1.yahoo.com/, 4/8/14, #SpringClean
Yahoo!	-	Information Disclosure, groups.yahoo.com,6-april-2014, #SpringClean
Yahoo!	$100	XSS in Yahoo! Web Analytics
Yahoo!	-	Out of date version
Yahoo!	$800	From Unrestricted File Upload to Remote Command Execution
Yahoo!	-	Open redirect on tw.money.yahoo.com
Yahoo!	-	Open URL Redirection
Yahoo!	$500	Server Side Request Forgery
Yahoo!	-	Almost all the subdomains are infected.
Yahoo!	-	Stored Cross Site Scripting Vulnerability in Yahoo Mail
Yahoo!	$250	XSS Vulnerability (my.yahoo.com)
Yahoo!	-	Clickjacking at surveylink.yahoo.com
Yahoo!	-	Authentication bypass at fast.corp.yahoo.com
Yahoo!	$1,000	SQL Injection ON HK.Promotion
Yahoo!	$100	http://conf.member.yahoo.com configuration file disclosure
Yahoo!	-	Yahoo mail login page bruteforce protection bypass
Yahoo!	-	Yahoo open redirect using ad
Yahoo!	-	Reflected XSS in mail.yahoo.com
Yahoo!	$1,500	XSS on Every sports.yahoo.com page
Yahoo!	$1,276	HK.Yahoo.Net Remote Command Execution
Yahoo!	-	Insufficient validation of redirect URL on login page allows hijacking user name and password
Yahoo!	-	In Fantasy Sports iOS app, signup page is requested over HTTP
Yahoo!	$1,390	Local file inclusion
Yahoo!	-	A csrf vulnerability which add and remove a favorite team from a user account.
Yahoo!	-	XSS Reflected - Yahoo Travel
Yahoo!	$3,705	SQLi on http://sports.yahoo.com/nfl/draft
Yahoo!	$750	Flickr: Invitations disclosure (resend feature)
Yahoo!	$800	HTML Injection on flickr screename using IOS App
Yahoo!	-	URL Redirection
Yahoo!	-	Yahoo YQL Injection?
Yahoo!	-	HTML Code Injection
Yahoo!	-	Vulnerability found, XSS (Cross site Scripting)
Yahoo!	-	ClickJacking on http://au.launch.yahoo.com
Yahoo!	-	Authentication Bypass in Yahoo Groups
Yahoo!	-	clickjacking
Yahoo!	$800	XSS in my yahoo
Yahoo!	$2,500	Security.allowDomain("*") in SWFs on img.autos.yahoo.com allows data theft from Yahoo Mail (and others)
Yahoo!	-	Directory Traversal
Yahoo!	-	Information Disclosure
Yahoo!	-	Bypass of anti-SSRF defenses in YahooCacheSystem (affecting at least YQL and Pipes)
Yahoo!	-	XSS using yql and developers console proxy
Yahoo!	$1,960	Store XSS Flicker main page
Yahoo!	-	Java Applet Execution On Y! Messenger
Yahoo!	$2,173.75	Cross-site scripting on the main page of flickr by tagging a user.
Yahoo!	$677.50	XSS Yahoo Messenger Via Calendar.Yahoo.Com