logo

Back to Decathlon’s Live Bug Bounty

ID: f5eac8ae-c0d2-558e-9e91-10d05543f16c

STIX ID: report--f5eac8ae-c0d2-558e-9e91-10d05543f16c

Feed Name: YesWeHack Blog | Cybersecurity Insights and Bug Bounty Trends| RSS Feed

Threat Score
15/100

Date Published: 2022-06-15

Date Updated: 2026-07-04

...
...

Decathlon partnered with YesWeHack to run a Live Bug Bounty at the International Cybersecurity Forum, where ethical hackers identified multiple security issues—including IDORs, SQL injection, and an RCE—affecting the OneShop e‑commerce platform and authentication/loyalty services; 64 reports were triaged, 27 accepted (3 critical), patches were started during the event, and the teams maintained an average response time of ~1 hour 06 minutes.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.