I found a brute force vulnerability in website with 2,000,000+ users (but is somewhat niche) that allowed me to find passwords, emails, twitter, facebook, and instagram handles, first and last names, and some other information. Is it worth disclosing, or is there no point, as it is too small of a vulnerability to do anything?
[link] [comments]
from hacking: security in practice https://ift.tt/Qnfkrej
Comments
Post a Comment