- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
I reported it to Google & Google confirmed that this is working as intended - not a #vulnerability
🚨 Hidden tabs in #google Sheets are NOT a security feature.
In this video, I demonstrate how a user with View-only access can still access the contents of hidden sheets using Google Apps Script.
I responsibly reported this behavior to Google VRP, and Google confirmed that this is working as intended — not a security vulnerability.
📌 Key takeaway:
Hiding a sheet only hides it from the UI. It does NOT protect the underlying data.
Many users assume hidden tabs are secure for:
• Internal notes
• Student answers
• Form-linked data
• Sensitive references
• Admin-only information
But if someone already has access to the spreadsheet, hidden content may still be accessible.
⚠️ This video is shared for educational and security awareness purposes only.
✅ Google’s response:
Google clarified that hidden sheets are not considered a security boundary, and users with access can already reveal hidden sheets in other ways (such as making a copy of the spreadsheet).
🎯 Lesson:
UI restrictions should never be treated as real access control.
#GoogleSheets #CyberSecurity #GoogleWorkspace #InfoSec #BugBounty #SecurityAwareness #AppsScript #EthicalHacking #DataSecurity #GoogleVRP #vulnerability #proofofconcept
google sheets
google apps script
google sheets security
cyber security
bug bounty
ethical hacking
google vrp
information security
hidden sheet
apps script poc
google workspace security
security awareness
Видео I reported it to Google & Google confirmed that this is working as intended - not a #vulnerability канала CYB3R0X01
In this video, I demonstrate how a user with View-only access can still access the contents of hidden sheets using Google Apps Script.
I responsibly reported this behavior to Google VRP, and Google confirmed that this is working as intended — not a security vulnerability.
📌 Key takeaway:
Hiding a sheet only hides it from the UI. It does NOT protect the underlying data.
Many users assume hidden tabs are secure for:
• Internal notes
• Student answers
• Form-linked data
• Sensitive references
• Admin-only information
But if someone already has access to the spreadsheet, hidden content may still be accessible.
⚠️ This video is shared for educational and security awareness purposes only.
✅ Google’s response:
Google clarified that hidden sheets are not considered a security boundary, and users with access can already reveal hidden sheets in other ways (such as making a copy of the spreadsheet).
🎯 Lesson:
UI restrictions should never be treated as real access control.
#GoogleSheets #CyberSecurity #GoogleWorkspace #InfoSec #BugBounty #SecurityAwareness #AppsScript #EthicalHacking #DataSecurity #GoogleVRP #vulnerability #proofofconcept
google sheets
google apps script
google sheets security
cyber security
bug bounty
ethical hacking
google vrp
information security
hidden sheet
apps script poc
google workspace security
security awareness
Видео I reported it to Google & Google confirmed that this is working as intended - not a #vulnerability канала CYB3R0X01
kalilinux developers bug bounty pentesting hacking ethical hacking web pentesting cyb3r0x01 GoogleSheets CyberSecurity GoogleWorkspace InfoSec BugBounty AppsScript GoogleVRP google workspace security how I hacked google google vulnerabilit poc how I found a bug in google google vulnerability how to hack google how I find a vulnerability in google vulnerability PoC PoC how i hacked google real hacking
Комментарии отсутствуют
Информация о видео
16 мая 2026 г. 10:34:17
00:02:02
Другие видео канала
WiFi Attack: Capturing Windows Credentials with #Responder | How Hackers Capture Windows Passwords |
how to find wifi password on computer windows 10,11 | wifi ka password kaise pata kare 2023 |
Controlled My #kalilinux Using WhatsApp. Here’s How | Insane Automation Hack | #openclaw Explained
Resolving "Password Entry Required" Error in Linux |Broadcast message systemd-tty-ask-password-agent
How to get temporary number for verification | Get fake number for OTP authentications
Dangerous Instagram IDOR | How a Dangerous IDOR Vulnerability in Instagram was Exploited
CSRF Vulnerability - PoC HackerOne |Live CSRF Vulnerability Capture|Bug Bounty 2023#linux#bugbounty
XSS Vulnerability in Google Sandbox Domain via SVG File Upload | Google XSS - Cross Site Script Bug.
How to Reset Forgotten Password on Kali Linux #kalilinux #linux | How To Find Username Of Kali Linux
How to open any application using command prompt | cmd | Make windows command line !
Instagram SSRF | Meta SSRF | Server Side Request Forgery Vulnerability on Instagram.com | meta.com
