摘要:服务滥用:免费提供无限的文件存储空间计数错误再现步骤:创建一个新的Google云端硬盘帐户出现文件“入门”右键单击该文件,然后单击“管理版本”上载任何数量的文件作为新版本的“入门”,即使选中“永远保留”该文件,也不会占用空间。浏览器/操作系统:任何攻击情形:任何普通用户都可以使用Google Drive用户界面或有经验的用户通过Google Drive API进行操作。用户可以上传无限制数量的文件而无需支付任何费用,并永久免费存储文件。
Hey,We're closing this bug, as you didn't provide enough details for us to determine what the security issue you're reporting. Feel free to update this report with additional details.We tried to replicate it and wasn't able to, if you think you were able to feel free to share a proof of concept in a video.If you didn't provide this yet, please include the reproduction steps (https://sites.google.com/site/bughunteruniversity/improve/help-us-reproduce-the-bug), an attack scenario (https://sites.google.com/site/bughunteruniversity/improve/writing-the-perfect-attack-scenario) and a short explanation why do you believe this is a technical security vulnerability.Thanks!Google Trust & Safety
您好,感谢您的POC,我们在您共享的视频中注意到,它与视频屏幕右上方可见的Gsuite帐户相关联。有关G套件存储限制的更多信息,请访问。support.google.com/a/answer/172541?hl=zh_CN您的报告现已*已关闭*谢谢!Google信任与安全