Submitted by grawlings on Fri, 11/03/2017 - 10:02
A security researcher has identified bugs in Google’s bug tracker platform Issue Tracker. It is indeed ironic that the software intended to deal with unpatched vulnerabilities and bugs during product development itself is loaded with bugs through which the researcher managed to access sensitive internal systems of Google.
Issue Tracker program is to be used by external public and partner users who work with Google’s team on different projects. This program gives access control permissions to users so that they could find, create, view and modify issues for any project.