πŸ‘¨β€πŸ’»πŸ‘ΎπŸ‘¨β€πŸ’»πŸ‘ΎπŸ‘¨β€πŸ’»πŸ‘Ύ

Home

❯

Bug_Bounty

❯

Methodology

❯

Low_Hangers

❯

EXIF Geolocation Data not Stripped From Uploaded Images

EXIF Geolocation Data not Stripped From Uploaded Images

Dec 07, 20241 min read

  • exif
  • p3

Example H1 Reports:

  • https://hackerone.com/reports/615336
  • https://hackerone.com/reports/446238
  1. Go to target website and create an account.
  2. Copy the path to the uploaded profile picture.
  3. Go to jimpl and paste the URL.
  4. If Geolocation is found β†’ Report.

Graph View

Created with Quartz v4.5.0 Β© 2025

  • GitHub
  • Discord Community