Account Takeover / Arbitrary File read and deletion / Partial code execution (intent redirection)
High
M
MercadoLibre
Submitted None
Team Summary
Official summary from MercadoLibre
We thank @fr4via for the report and for providing clear reproduction steps with a proof-of-concept code demonstrating the vulnerability. MercadoLibre acknowledged the issue and worked on a fix internally.
Actions:
Reported by
fr4via
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Code Injection