| 2986 | Opera Browser Cross Site Scripting (XSS) |
XSS
Android |
Opera |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2020-12-05 | 2023-06-13 |
| 2980 | Facebook push notification linkshim bypassed |
Open redirect |
Meta / Facebook |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2020-12-07 | 2023-06-13 |
| 2978 | Facebook leak referrer data |
Open redirect |
Meta / Facebook |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2020-12-08 | 2023-06-13 |
| 1921 | Xiaomi Execute Arbitrary JavaScript |
XSS
HTML injection
Android |
Xiaomi |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2022-01-13 | 2023-06-13 |
| 1919 | FB Lite All Users Active Status Changed |
Logic flaw |
Meta / Facebook |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2022-01-14 | 2023-06-13 |
| 1043 | Arbitrary File Corruption: End - to - End Encrypted Messaging Application |
Insecure intent
Android |
NA |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2022-09-23 | 2023-06-13 |
| 1034 | Shopping App Deeplink Arbitrary URLs |
Insecure deeplink
Android |
NA |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2022-09-25 | 2023-06-13 |
| 983 | Gcash Vulnerability Walkthrough |
Android
Insecure deeplink
Insecure intent |
Gcash |
Neil Mark Ochea (@nmochea) |
Bug Bounty | 2022-10-10 | 2023-06-13 |
