New comment by smithstreet in "Marble Blast"

smithstreet — Tue, 24 Jun 2025 11:20:42 +0000

Is there a 'Black Diamond' level from the xbox 360 original? if so, where can i find it

New comment by smithstreet in "1 bug, $50k in bounties, a Zendesk backdoor"

smithstreet — Mon, 14 Oct 2024 12:08:32 +0000

This vulnerability in ZD appears to be made worse by ZD's Suspended/Spam feature. There is no indication in the spam queue that there is someone CC'd on the email. So an agent may see a ticket from their customer and approve it. Even when you then view the ticket, there is still no indication there is a CC'd third party unless you 'View original' on the email.

Hacker News: smithstreet

New comment by smithstreet in "Marble Blast"

New comment by smithstreet in "1 bug, $50k in bounties, a Zendesk backdoor"