Bug Bounty | Notion

Apple — Safari Safe Browsing Bug https://medium.com/@rahulmfg/safari-vulnerability-leaves-it-s-users-unsafe-safari-safebrowsing-cb6a2c3a47c0
Google — XSS in Google Translate http://getrhl.blogspot.in/2013/11/google-translate-bug-xss-browser-cookies.html
United Airlines — Account Takeover
Facebook — FB Groups API Bug [Access group docs]

https://medium.com/@rahulmfg/get-groups-doc-without-user-permission-facebook-graph-api-bug-5f19367373a2
Flickr — CSRF to accept Group Join Invite https://www.youtube.com/watch?v=6JLbmr5m4M0&feature=youtu.be
Amazon — Clickjacking in all pages
HackerRank — Stored XSS in Profile
Facebook — IDOR in Facebook Group Chat https://medium.com/@rahulmfg/facebook-group-chat-bug-2013-e3595cdbbd51
Facebook — CSRF in Search
MediaFire — CSRF to disable SSL
eBay — Reflected XSS

http://pages.ebay.com/securitycenter/ResearchersAcknowledge ment.html [Rahul M]