$10k+5k Web cache poisoning - Github + Firefox - Bug Bounty Reports Explained

📧 Subscribe to BBRE Premium: https://bbre.dev/premium ✉️ Sign up for the mailing list: https://bbre.dev/nl 📣 Follow me on Twitter: https://bbre.dev/tw Today's video is about Web Cache Poisoning attacks found during the yearly research by James Kettle aka albinowax. The bug bounty reports explained in the video come from Github and Mozilla bug bounty programs. Follow me on twitter: https://twitter.com/gregxsunday Video: https://www.youtube.com/watch?v=bDxYWGxuVqE&ab_channel=PortSwigger Article: https://portswigger.net/research/web-cache-entanglement Whitepaper: https://portswigger.net/kb/papers/c3wwniai/web-cache-entanglement.pdf James' twitter: https://twitter.com/albinowax Timestamps: 00:00 Intro 00:27 What is cache? 02:47 basics of cache poisoning 03:54 Github cache poisoning 05:21 Firefox cache poisoning #cachepoisoning #bugbounty