There is no rate limit for SME REGISTRATION PORTAL

Disclosed: 2022-09-19 05:41:27 By sachinrajput To mtn_group

Unknown

Vulnerability Details

## Summary: The speed limit for the https://mtngbissau.com/registo/ endpoint has not been implemented. ## Steps To Reproduce: 1. Go to the https://mtngbissau.com/registo/ 2. fill out the Registration form 3. Send request to Intruder. 4. Set your payloads and start attack. 5. There is no rate-limit. ## Impact Attacker can register false n-number of request which lead to DDos attack.

Actions

View on HackerOne

Report Stats

Report ID: 1305766
State: Closed
Substate: resolved
Upvotes: 11

There is no rate limit for SME REGISTRATION PORTAL

Vulnerability Details

Actions

Report Stats

Share this report