Tale of 2 TOOTB Bugs: Google and WhatsApp

First of all, with TOOTB , I meant “think out of the box”. Don’t get confused haha.

Also lets keep all writeups from now on simple and short shall we? Or you like the stories also which I made long back!!

WHATSAPP:

Recently it had some privacy policy changes, so just thought i should just post about this then anyways.

Bug: Shadow viewing another users’ status updates while having set your read receipt ”disabled”. (In some cases.)

According to the app’s usage, switching off the Read Receipts for messages does not let you know if the person has read your message or not, you will also not be able to see who all have checked your status.

Bypass:

1. There is a section for already viewed updates in whatsapp.
2. Just on top of that you can see the section for new status.
3. Click on the top of already viewed status and keep pressing with you finger . (don’t tap, hold it.)
4. While keeping fingers touched, swipe over to left side and don’t lift your fingers.
5. In that way we are able to see the status of section in “Unseen status updates. “ but only of the bottom person of that section. (I mean unseen status just above the section of already viewed updates. )
6. Also you can’t view a video status of a user as in that cases you have to lift finger for that video to play .
7. So the glitch works perfect in every case of all status updates just above the already seen section, but with either text or images.

I know its a bit hard to get without a poc but I don’t carry much time for that. Sorry :(

Reported around 6 months back.

Still unfixed as the bug doesn’t match the minimum monetary standards which I do agree. But a bug is a bug. ;)

YouTube:

Bug: ABILITY TO VIEW AGE RESTRICTED VIDEOS ON YT WITHOUT SIGNING IN .

I had reported it around a year back, and got reply that it is know internally blah blah. This was not fixed for many months until recently when i check it has been fixed.

1. Suppose https://www.youtube.com/watch?v=xzy is a age restricted video on youtube.
2. Simply create this url https://www.youtube.com/embed/xzy and you will be able to view the video without doing all the usual sign in or changing your age in google account lol.

So that was tale of two quick finds.

Tale of 2 TOOTB Bugs: Google and WhatsApp by @CircleNinja https://link.medium.com/X3H4yOQz2cb

If you appreciate it and would like to encourage me to write more , pls do share on twitter and tag me, it gives me motivation otherwise, I will become a lazy ass haha.