The researcher’s report revealed multiple endpoints vulnerable to the same flaw.
A potential remote code execution (RCE) bug has been patched in one of Starbucks’ mobile domains. The US coffee giant runs a bug bounty platform on HackerOne. A new vulnerability report submitted by Kamil «ko2sec» Onur Özkaleli, first submitted on November 5 and made public on December 9, describes an RCE issue found on mobile.starbucks.com.sg, a platform for Singaporean users. See also: FireEye’s bug bounty program goes public According to the advisory, ko2sec discovered an.ashx endpoint on mobile.starbucks.com.sg that was intended for handling image files. However, the endpoint did not restrict file type uploads, which means that attackers abusing the issue could potentially upload malicious files and remotely execute arbitrary code.
