My First Bounty From Google.

I have never thought in my life, and maybe this is luck because I get a lot of money, maybe for you this is nothing, but for me this is a very valuable thing.

First I thank to Allah SWT
because what I get is from Allah SWT
and I never thought :(

the Bug that I found on Google Translate is Self-XSS and Html Injection

on that day I only wanted to translate into English and there was no intention to search for bugs on Google, because that was impossible for me. but, I don’t know why I’m curious and try typing in code like this: <img src=xx onerror=alert(document.domain)>

and see..

I am shocked! because I accidentally managed to execute Self-XSS on Google Translate

after doing that, I immediately reported the bug to the Google Security Team

The Google Security Team received my report, and I get an email like this

What??? I did not think that my report was received by Google Security Team

after waiting 6 days, I got an email from Google and it contained ..

I feel so happy!
I got a big prize from Google because I reported a bug

sorry if my english is not good :(

Timeline:

Reporting Date - Jul 16, 2019 10:04 AM
Nice Catch - Jul 17, 2019 12:05 AM
Reward - Jul 23, 2019 11:57 PM
Fixed - Jul 31, 2019 02:36PM

Video: https://www.youtube.com/watch?v=D4WLzkGqBE4

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store