Posts tagged with #dos

• 🔒 Unauthenticated Infrastructure Abuse in Google Image Proxy

  Jan 31, 2026 (in 2 weeks) 1000 rvfet

  

  abuse-vrp dos ssrf writeups

  Affected Company:

  Google

  How a logic flaw in Google's internal proxy service allowed for unauthenticated, attribution-free DDoS amplification and infrastructure resource exhaustion.

  Full Write-up

• CVSS 6.5 Persistent State Corruption in Linear.app

  Dec 10, 2025 (last month) 1000 rvfet

  

  logic-bug graphql dos writeups

  Affected Company:

  Linear.app

  Analyzing a logic vulnerability in Linear's optimistic UI architecture that allowed authenticated users to permanently 'brick' other accounts via ID collision.

  Full Write-up