Skip to main content

Posts

Showing posts with the label halloffame

Google Blogger- Insecure Implementation of Request Limiter | Google Honourable Mentions | Rishu Ranjan

The security issue allows a malicious actor to bypass the naive security implementation of rate limiters. This allows an attacker to abuse the functionality of profile view count and increases them indefinitely. The following are the steps to reproduce wherein I have used my own blogger account (https://www.blogger.com/profile/09844396241453600561)