BobDaHacker ๐Ÿณ๏ธโ€โšง๏ธ | NB @bobdahacker@infosec.exchange
Public

๐Ÿ”“ Found critical vulns in Taimi (LGBTQ+ dating app) - all fixed, $10k bounty

What I found:

  • "Expiring" videos didn't expire, URLs stayed valid forever
  • Decrement attachment ID = anyone's private videos
  • Location feature bypassed photo permission checks (why upload a map preview image through the photo system??)
  • Fake system messages (made a Raid Shadow Legends sponsorship lol)

The good news: Taimi actually handled this right. Fast response, $10k bounty, everything fixed quickly. No lawyers, no threats.

This is how disclosure should work. Take notes, Lovense.

Full writeup: bobdahacker.com/blog/taimi-idor

Taimi: Finding Everyone's Private Photos Was Easy, But So Was Getting Paid

How I found critical IDOR vulnerabilities in Taimi that exposed

bobdahacker.com

0
0
0

If you have a fediverse account, you can quote this note from your own instance. Search https://infosec.exchange/users/bobdahacker/statuses/115784142915418119 on your instance and quote it. (Note that quoting is not supported in Mastodon.)