- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Bug Bounty Field Notes #2 – A Shopify Bug That Should’ve Been Accepted
In this video, I break down a bug I reported to Shopify that was ultimately marked Informative.
The focus of this episode is the actual behavior I found:
Where the bug existed in the application
What the application allowed that should not normally be possible
Why the behavior mattered from a security and abuse perspective
The exact reason Shopify classified it as Informative
I avoid sharing exploit steps or anything sensitive. The goal is to clearly explain what the bug was, why it stood out, and how Shopify evaluated it.
This is a realistic look at how high-maturity programs handle edge-case issues that sit in a gray area between “bug” and “expected behavior.”
If you’re hunting on large programs or trying to understand how triage decisions are made, this breakdown should help sharpen your testing and reporting.
#bugbounty #cybersecurity #ethicalhacking
Видео Bug Bounty Field Notes #2 – A Shopify Bug That Should’ve Been Accepted канала LoganSec
The focus of this episode is the actual behavior I found:
Where the bug existed in the application
What the application allowed that should not normally be possible
Why the behavior mattered from a security and abuse perspective
The exact reason Shopify classified it as Informative
I avoid sharing exploit steps or anything sensitive. The goal is to clearly explain what the bug was, why it stood out, and how Shopify evaluated it.
This is a realistic look at how high-maturity programs handle edge-case issues that sit in a gray area between “bug” and “expected behavior.”
If you’re hunting on large programs or trying to understand how triage decisions are made, this breakdown should help sharpen your testing and reporting.
#bugbounty #cybersecurity #ethicalhacking
Видео Bug Bounty Field Notes #2 – A Shopify Bug That Should’ve Been Accepted канала LoganSec
Комментарии отсутствуют
Информация о видео
30 января 2026 г. 1:10:55
00:07:34
Другие видео канала
Another Duplicate. Another Lesson. | Bug Bounty Field Notes EP.004
I Built the Home Base for LoganSec
This Is What Real Bug Bounty Recon Looks Like
I Built a Tool So I'd Stop Forgetting Bug Bounty Techniques
I Built My Own JS Recon Automation for Bug Bounty
The Bug Bounty Mindset That Actually Works
Bug Bounty Field Notes #1 – 3 Reports. 3 N/A’s. What I Learned
Client-Side vs Server-Side: The Difference Every Hacker Must Understand
Watch Me Learn AI Hacking Vulnerabilities from Zero
I Picked My Own Account Type | Bug Bounty Field Notes EP.007
I Found My First Self XSS Bug by Accident
Why your Bug Bounty Reports Keep Getting Marked Informative
Bug Bounty Tips 1 #shorts
I Got Duped 3 Times on One Bug Bounty Target
Starting My Bug Bounty Journey (No Edits, No Excuses)
I Wasted Time on a “Valid” Bug That 6 People Already Reported
6 Bug Bounty Resources I Wish I Used When I Started
They Marked My OAuth Bug Informative… Then Patched It
This Tiny JavaScript Mistake Causes XSS
My Manual Recon Framework (Real Bug Bounty Example)
