Security Critical Yahoo Mail Flaw Patched, $10K Bounty Paid January 19, 2016 007admin Leave a comment A researcher earned a $10,000 bounty from Yahoo for a stored cross-site scripting vulnerability in Yahoo Mail.