I bypassed AWS API Gateway auth with a trailing slash. Got $12K bounty

 (theguptalog.blogspot.com)

4 points | by GeorgeWoff25 9 hours ago ago

3 comments

  • Bansi_Gupta 6 hours ago ago

    Nice, you got paid 12k for a defect that could've cost them millions

  • ofcyes 8 hours ago ago

    This is going to make a lot of DevOps engineers audit their setups today

    [-]