limit number of images in statement
Medium
Vulnerability Details
Hello
The use of the images in the statements
` `
There appears to be no limit on how many can be inserted.
On my own account "https://gratipay.com/~34534534fsfs/" I placed 100
Gratipay users could unknowingly become part of a DDoS attack against another site.
I would recommend limiting the number of images that can be placed.
Attached is a video of just a traffic counter being triggered by the page load.
Actions
View on HackerOneReport Stats
- Report ID: 117739
- State: Closed
- Substate: resolved
- Upvotes: 2