A remote code execution flaw in Google App Engine would qualify for a $20,000 reward under the Google Vulnerability Reward Program, but it’s not clear if Security Explorations followed all of ...