GoFuckYourself.com - Adult Webmaster Forum

GoFuckYourself.com - Adult Webmaster Forum (https://gfy.com/index.php)
-   Fucking Around & Business Discussion (https://gfy.com/forumdisplay.php?f=26)
-   -   pretty crazy Google SEO hole got plugged (https://gfy.com/showthread.php?t=1297603)

lezinterracial 04-08-2018 06:18 AM
pretty crazy Google SEO hole got plugged
 
In a nutshell, looks like he found a hi ranking site, found an open redirect, then pinged his site through the open redirect.

Only $1337 reward.

I am wondering how many people were already using this trick.

Google bug bounty for security exploit that influences search results - Tom Anthony

freecartoonporn 04-08-2018 09:54 AM
he could have made much more than that.
damn those whitehats

Tube Ace 04-08-2018 11:51 AM
Saw this the other day. Very surprised the guy didn't exploit this.

shake 04-08-2018 05:07 PM
Quote:
Originally Posted by Tube Ace (Post 22250285)
Saw this the other day. Very surprised the guy didn't exploit this.
Yup, could have made millions easy.

Bladewire 04-08-2018 06:14 PM
Great thread as always lezinterracial i read that article from beginning to end and back again, thank you.

I'm shocked , and delighted, that it took Google 6 months to fix this AND they only paid $1,337 for something that is going to astronomically change the quality of Google's search results.

@Tube Ace looking at Google's response, including their denial of importance, length of time to fix, and miniscule bounty, I'm betting there are similar variants of this wide open because Google's foes feel similar behavior has many legitimate uses "..we were unable to get a definitive decision, if it would be possible to address this behavior with the redirect chain without breaking many legitimate use cases."

So Google thinks similar off domain/cross domain redirect chains to unrelated domains have legitimate uses, even after this bug... interesting.

SIK 04-08-2018 07:00 PM
Quote:
Originally Posted by lezinterracial (Post 22250173)
I am wondering how many people were already using this trick.
I remember back in the day, during my tampering with penis pills and such stuff, some of us "used that trick" to make sure we get the cookie saved on surfer's computer.

It came down to making MY site navigation something like:

http://www.penis-pills-mainsite.com/....COM/home.html
and all links in main menu like that

never imagined it could be done for much more than just cookie shit :1orglaugh

Paul&John 04-08-2018 10:51 PM
lol and got a l33t reward for this ahahah

bns666 04-08-2018 11:53 PM
Quote:
Originally Posted by freecartoonporn (Post 22250231)
he could have made much more than that.
damn those whitehats
my first thought also.

also that wasn't some super secret, there were people selling this as seo service on fiverr few years ago.

PornDiscounts-V 04-09-2018 02:13 PM
What a dumbass

CaptainHowdy 04-09-2018 02:46 PM
Quote:
Originally Posted by PornDiscounts-V (Post 22250849)
What a dumbass
More money, more problems?

geedub 04-10-2018 07:17 AM
They pay $1337 on purpose. Any old schooler should be able to recognize.

Klen 04-10-2018 07:23 AM
Quote:
Originally Posted by geedub (Post 22251276)
They pay $1337 on purpose. Any old schooler should be able to recognize.
My Skype id is misspell of it :upsidedow

WiredGuy 04-10-2018 08:41 AM
Quote:
Originally Posted by lezinterracial (Post 22250173)
In a nutshell, looks like he found a hi ranking site, found an open redirect, then pinged his site through the open redirect.

Only $1337 reward.

I am wondering how many people were already using this trick.

Google bug bounty for security exploit that influences search results - Tom Anthony
Great article, thank you for sharing this.
WG


All times are GMT -7. The time now is 11:38 PM.

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
©2000-, AI Media Network Inc123