Date archives: November 18, 2023

Full account takeover of any user through reset password

U.S. Dept Of Defense disclosed a bug submitted by maskedpersian: https://hackerone.com/reports/2194928 [Source]

U.S. Dept Of Defense disclosed a bug submitted by r00tdaddy: https://hackerone.com/reports/2233421 [Source]

U.S. Dept Of Defense disclosed a bug submitted by r00tdaddy: https://hackerone.com/reports/2233418 [Source]