Assigned as Patched, but actually still Not Patched
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Dear Admin,
Why many of my submissions have assigned as "Patched", but they are actually still Not Patched?
Additionally, the appearances of OPENBUGBOUNTY text on screenshoots are also not match with the reality.
Furhermore, the date of Vulnerability Fixed and Public Disclosure are also not appropriate. For example, Vulnerability Fixed on 14 June, but Public Disclosure on 13 June?
I think these issues could made other researchers to see my POCs, but the vulnerability are still not fixed.
I must email OBB manually in order to OBB Team can recheck and fix these issues as soon as possible.
Why many of my submissions have assigned as "Patched", but they are actually still Not Patched?
Additionally, the appearances of OPENBUGBOUNTY text on screenshoots are also not match with the reality.
Furhermore, the date of Vulnerability Fixed and Public Disclosure are also not appropriate. For example, Vulnerability Fixed on 14 June, but Public Disclosure on 13 June?
I think these issues could made other researchers to see my POCs, but the vulnerability are still not fixed.
I must email OBB manually in order to OBB Team can recheck and fix these issues as soon as possible.
Re: Assigned as Patched, but actually still Not Patched
please provide reports idmetamorfosec_id wrote: ↑Mon Jun 25, 2018 10:02 pmDear Admin,
Why many of my submissions have assigned as "Patched", but they are actually still Not Patched?
Additionally, the appearances of OPENBUGBOUNTY text on screenshoots are also not match with the reality.
Furhermore, the date of Vulnerability Fixed and Public Disclosure are also not appropriate. For example, Vulnerability Fixed on 14 June, but Public Disclosure on 13 June?
I think these issues could made other researchers to see my POCs, but the vulnerability are still not fixed.
I must email OBB manually in order to OBB Team can recheck and fix these issues as soon as possible.
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Re: Assigned as Patched, but actually still Not Patched
These submissions fixed by OBB Team by returning the statuses to Unpatched ("On Hold"):
OBB-614299
OBB-613450
OBB-614296
OBB-612529
OBB-613452
OBB-614297
OBB-613454
OBB-614300
OBB-613459
OBB-614301
OBB-616176
OBB-624405
OBB-613707
OBB-613449
Still not fixed (I just emailed OBB Team):
OBB-623677
OBB-614299
OBB-613450
OBB-614296
OBB-612529
OBB-613452
OBB-614297
OBB-613454
OBB-614300
OBB-613459
OBB-614301
OBB-616176
OBB-624405
OBB-613707
OBB-613449
Still not fixed (I just emailed OBB Team):
OBB-623677
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Re: Assigned as Patched, but actually still Not Patched
Again:
OBB-613707 (published on Day 30, but still not fixed)
OBB-623677 (published on Day 30, but still not fixed)
OBB-629506 (still not fixed, but scheduled will be published on Day 30)
OBB-613707 (published on Day 30, but still not fixed)
OBB-623677 (published on Day 30, but still not fixed)
OBB-629506 (still not fixed, but scheduled will be published on Day 30)
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Re: Assigned as Patched, but actually still Not Patched
Dear Admin, please check this:
OBB-631935 - Still not fixed, but Vulnerability Fixed on 17 July and Public Disclosure on 14 July. Vulnerability Reported on 14 June.
Thank you
OBB-631935 - Still not fixed, but Vulnerability Fixed on 17 July and Public Disclosure on 14 July. Vulnerability Reported on 14 June.
Thank you
Re: Assigned as Patched, but actually still Not Patched
fixedmetamorfosec_id wrote: ↑Tue Jul 17, 2018 6:52 pmDear Admin, please check this:
OBB-631935 - Still not fixed, but Vulnerability Fixed on 17 July and Public Disclosure on 14 July. Vulnerability Reported on 14 June.
Thank you
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Re: Assigned as Patched, but actually still Not Patched
Dear Admin, please check these submissions.
Please make them to On Hold because they still not fixed.
Thank you.
OBB-613676 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-616038 (Reported: 13 May, 2018, but Disclosure: 12 June, 2018?)
OBB-616176 (Reported: 14 May, 2018, but Disclosure: 13 June, 2018?)
OBB-621099 (Reported: 24 May, 2018, but Disclosure: 23 June, 2018?)
OBB-622803 (Reported: 26 May, 2018, but Disclosure: 25 June, 2018?)
OBB-623437 (Reported: 28 May, 2018, but Disclosure: 27 June, 2018?)
OBB-624405 (Reported: 29 May, 2018, but Disclosure: 28 June, 2018?)
OBB-626272 (Reported: 3 June, 2018, but Disclosure: 3 July, 2018?) -> solve the CAPTCHA first
OBB-629499 (Reported: 9 June, 2018, but Disclosure: 9 July, 2018?)
OBB-629957 (Reported: 11 June, 2018, but Disclosure: 11 July, 2018?)
OBB-631935 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
OBB-631902 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
Additionally, alerts on screenshots for these submissions are not aligned with the POC (without /../)
OBB-612529 (Reported: 5 May, 2018, but Disclosure: 4 June, 2018?)
OBB-613449 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613450 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613452 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613454 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613459 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-614296 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614297 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614299 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614300 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614301 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
Please make them to On Hold because they still not fixed.
Thank you.
OBB-613676 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-616038 (Reported: 13 May, 2018, but Disclosure: 12 June, 2018?)
OBB-616176 (Reported: 14 May, 2018, but Disclosure: 13 June, 2018?)
OBB-621099 (Reported: 24 May, 2018, but Disclosure: 23 June, 2018?)
OBB-622803 (Reported: 26 May, 2018, but Disclosure: 25 June, 2018?)
OBB-623437 (Reported: 28 May, 2018, but Disclosure: 27 June, 2018?)
OBB-624405 (Reported: 29 May, 2018, but Disclosure: 28 June, 2018?)
OBB-626272 (Reported: 3 June, 2018, but Disclosure: 3 July, 2018?) -> solve the CAPTCHA first
OBB-629499 (Reported: 9 June, 2018, but Disclosure: 9 July, 2018?)
OBB-629957 (Reported: 11 June, 2018, but Disclosure: 11 July, 2018?)
OBB-631935 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
OBB-631902 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
Additionally, alerts on screenshots for these submissions are not aligned with the POC (without /../)
OBB-612529 (Reported: 5 May, 2018, but Disclosure: 4 June, 2018?)
OBB-613449 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613450 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613452 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613454 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613459 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-614296 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614297 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614299 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614300 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614301 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
Re: Assigned as Patched, but actually still Not Patched
fixedmetamorfosec_id wrote: ↑Fri Jul 20, 2018 11:31 amDear Admin, please check these submissions.
Please make them to On Hold because they still not fixed.
Thank you.
OBB-613676 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-616038 (Reported: 13 May, 2018, but Disclosure: 12 June, 2018?)
OBB-616176 (Reported: 14 May, 2018, but Disclosure: 13 June, 2018?)
OBB-621099 (Reported: 24 May, 2018, but Disclosure: 23 June, 2018?)
OBB-622803 (Reported: 26 May, 2018, but Disclosure: 25 June, 2018?)
OBB-623437 (Reported: 28 May, 2018, but Disclosure: 27 June, 2018?)
OBB-624405 (Reported: 29 May, 2018, but Disclosure: 28 June, 2018?)
OBB-626272 (Reported: 3 June, 2018, but Disclosure: 3 July, 2018?) -> solve the CAPTCHA first
OBB-629499 (Reported: 9 June, 2018, but Disclosure: 9 July, 2018?)
OBB-629957 (Reported: 11 June, 2018, but Disclosure: 11 July, 2018?)
OBB-631935 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
OBB-631902 (Reported: 14 June, 2018, but Disclosure: 14 July, 2018?)
Additionally, alerts on screenshots for these submissions are not aligned with the POC (without /../)
OBB-612529 (Reported: 5 May, 2018, but Disclosure: 4 June, 2018?)
OBB-613449 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613450 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613452 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613454 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-613459 (Reported: 7 May, 2018, but Disclosure: 6 June, 2018?)
OBB-614296 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614297 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614299 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614300 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
OBB-614301 (Reported: 9 May, 2018, but Disclosure: 8 June, 2018?)
-
- Posts:269
- Joined:Mon Apr 30, 2018 7:35 am
Re: Assigned as Patched, but actually still Not Patched
Dear Admin,
Please make these my submissions back to On Hold again because still in 90 day period and not fixed yet.
Thank you...
OBB-630088
OBB-634254
Please make these my submissions back to On Hold again because still in 90 day period and not fixed yet.
Thank you...
OBB-630088
OBB-634254
Who is online
Users browsing this forum: No registered users and 1 guest