Lukas' Random Thoughts

Tag: Bug Bounty

  • From Markdown to RCE in Atom

    Recently I took a look at Atom, a text editor by GitHub. With a little bit of work, I was able to chain multiple vulnerabilities in Atom into an actual Remote Code Execution. The vulnerabilities have been fixed in the 1.21.1 release on October 12th, 2017 after I reported it via their HackerOne program. In case you want to…

  • Nextcloud, Bug Bounties and me

    It is a well-known fact that I’m a vocal supporter of Bug Bounty programs. I do believe that running a fair and engaging bug bounty program is a great addition to any software security process. My personal experiences with Bug Bounties go back to the end of 2011 where somebody made me aware of the…

Create a website or blog at WordPress.com