Bug Hunter Exposes Microsoft VS Code Flaw in Protest of Disclosure Handling

A bug hunter's frustrating experience with Microsoft's disclosure process sparked a protest, as Ammar Askar publicly exposed a VS Code flaw that could allow attackers to steal OAuth tokens and access GitHub repositories. Askar's proof-of-concept exploit highlights the vulnerability, which was previously mishandled by…

https://osintsights.com/bug-hunter-exposes-microsoft-vs-code-flaw-in-protest-of-disclosure-handling?utm_source=mastodon&utm_medium=social

#VsCodeVulnerability #OauthTokenTheft #Github #Proofofconcept #BugDisclosure