Thursday, July 3, 2025

Aiman Al-hadhrami LinkedIn vulnerability


🔐 Security Report: LinkedIn Vulnerability Allows Remote Attacker Deception and Phishing Attacks

📩 Responsible Disclosure Statement to LinkedIn

I hereby confirm that a responsible disclosure was conducted regarding the following security vulnerability:

🚨 Disclosure Status:

This vulnerability was discovered, thoroughly documented, and responsibly reported by Aiman Al-Hadhrami.

Bug Bounty Report Number: 3235035

📆 Date Reported:
[July 02, 2025]

🏢 Reported To:
LinkedIn BugBounty program

📨 Reporting Method:
Submitted via official vulnerability disclosure portal  https://hackerone.com/bug-bounty-programs

📎 Report Content Included:

  • A clear and detailed description of the vulnerability.
  • Explanation of the potential security impact on users and the platform.
  • A technical example demonstrating the issue.
  • A video proof of concept (PoC).

Company Response:

A submission confirmation was received via HackerOne, indicating that the report (ID: 3235035) has been successfully delivered to the security team.

As of now, no further response or technical assessment has been provided.

🎯 Additional Notes:

  • The disclosure followed ethical guidelines with no public exposure or exploitation of the vulnerability.
  • The goal of this disclosure is to enhance user and platform security, not to cause harm or embarrassment to any party.


Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)