Deleting any video from Youtube

Similar to my previous blog entry, this is a blog about a lad who discovered a vulnerability and disclosed it to the company running the site. In this case, a Russian lad had discovered a way to remove any video from (a big deal obviously). This was done with a simple request made by the user:


event_id: ANY_VIDEO_ID
session_token: YOUR_TOKEN

In response to the disclosure of this bug, Google rewarded $5,000. A small reward for such a massive flaw in the system. (at least in my opinion)

Deleting any video from Youtube

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s