How I Hacked Samsung’s Tizen OS & LG Electronics Private Project Management Instances

Using Jiraffe security tool to find low-hanging fruits


Usual Boring SSRF, Right?

Samsung’s Tizen OS Bug Tracking Dashboard

Proof of concept for XSS

<svg xmlns="" onload="alert(document.domain)"/>
$ pip install jiraffe


Dear PIYUSH RAJ,As we said, LG CNS is a separate company from us.
Thus, we don't also have a contact point.
We'll contact the relevant department.
Thank you.
Best Regards,

Google Code-In C. Winner. GsOCer ‘19. Independent Security Researcher. Have hacked Medium, Mozilla, Opera & many more. Personal Website:

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store