I've found: 🔹 Auth bypass in the web editor 🔹 Insecure direct object references (IDOR) in project files 🔹 Rate-limiting gaps on the mobile API
#BugBounty #InfoSec #EthicalHacking #ByteDance capcut bug bounty
Does CapCut Need a Public Bug Bounty Program? I've found: 🔹 Auth bypass in the web