//
sign in
Post
by @danabra.mov
PostEmbed
by @danabra.mov
Record
by @jimpick.com
Record
by @atsui.org
+ new component
Post
🔓 Found critical vulns in Taimi (LGBTQ+ dating app) - fixed, $10k bounty - "Expiring" videos didn't expire - Decrement ID = anyone's private videos Taimi handled this right. Fast fix, proper bounty. bobdahacker.com/blog/taimi-i... #InfoSec #BugBounty #IDOR #Taimi #Security #CyberSecurity
5mo
bobdahacker.com
How I found critical IDOR vulnerabilities in Taimi that exposed
Taimi: Finding Everyone's Private Photos Was Easy, But So Was Getting Paid
BobDaHacker 🏳️‍⚧️ (she/her)