+- Dark C0d3rs (https://darkcoders.wiki)
+-- Forum: Exploit Log (https://darkcoders.wiki/Forum-Exploit-Log)
+--- Forum: Research Papers/Vulnerability reports (https://darkcoders.wiki/Forum-Research-Papers-Vulnerability-reports)
+--- Thread: HackerOne Disclosed Reports - 2025-10-06 (/Thread-HackerOne-Disclosed-Reports-2025-10-06)
HackerOne disclosed reports - 2025-10-06 - hashXploiter - 10-07-2025
Medium
resolved
resolved
Exceeding the limit of Workspaces via Race Condition
Bug reported by Ali Abbas was disclosed at October 6, 2025, 9:17 am | Business Logic Errors
The reporter discovered a race condition vulnerability in backend.singlestore.com that allowed free-tier users to bypass the 5-workspace limit by sending multiple simultaneous CreateWorkspace requests. This issue was patched by SingleStore as of October 3rd, 2025.