If you have a legitimate security fix for CapCut, ByteDance wants to hear from you. If your video won't export, try restarting your phone first.
In mid-2023, a researcher discovered that CapCut’s “share template” feature used sequential, predictable numeric IDs. By incrementing the ID in the API call GET /api/template/12345 , any user could download another user’s private template—including unlisted video drafts. capcut bug bounty fix
Up to $15,000 or more for severe vulnerabilities like RCE without user interaction . Common "Security Notice" Fixes for Users If you have a legitimate security fix for