Flickr


3 total issues disclosed

$3,250 total paid publicly


Most disclosed (1 disclosures) — Code Injection

View disclosed reports



Disclosed Reports


Report Title Vulnerability Type Disclosed By Severity Disclosed on
critical server misconfiguration lead to access to any user sensitive data which include user email and password Business Logic Errors mr_robert Medium 2021-11-02
CSRF in Account Deletion feature (https://www.flickr.com/account/delete) Cross-Site Request Forgery (CSRF) asad0x01_ High 2021-09-14
Arbitrary file read via ffmpeg HLS parser at https://www.flickr.com/photos/upload Code Injection asad0x01_ Critical 2020-01-25