I’m Lovin’ It: Exploiting McDonald’s India APIs to hijack deliveries and order food for a penny

Submitted ⁨⁨1⁩ ⁨year⁩ ago⁩ by ⁨tkw8@lemm.ee⁩ to ⁨technology@lemmy.world⁩

Comments

Sort:hotnew top

Treczoks@lemmy.world ⁨1⁩ ⁨year⁩ ago
And what an impressive list of bugs that is…

source
TheKMAP@lemmynsfw.com ⁨1⁩ ⁨year⁩ ago
$240 LMAO

source
NoForwardslashS@sopuli.xyz ⁨1⁩ ⁨year⁩ ago
A $240 gift card seems quite low for bugs that would allow you to order (essentially) free food, access the orders and invoices of other users, driver’s personal information and their real time location.

source
- walter_wiggles@lemmy.nz ⁨1⁩ ⁨year⁩ ago
  Yeah I’d be insulted. I think a good compromise would be to demand a higher amount, but to be donated to a charity.
  
  source
  - PlexSheep@infosec.pub ⁨1⁩ ⁨year⁩ ago
    That’s still insignificant compensation
    
    source
  - Etienne_Dahu@jlai.lu ⁨1⁩ ⁨year⁩ ago
    Like Ronald McDonald House Charities
    
    source
    -> View More Comments
AlecSadler@sh.itjust.works ⁨1⁩ ⁨year⁩ ago
Fantastic read!

source