Full path disclosure vulnerability on paragonie.com

Disclosed: 2016-06-17 01:56:06 By 1337_inj3c70r To paragonie
Unknown
Vulnerability Details
Sir, I have found a bug which is Full path discloser vulnerability. Vulnerable Point> https://paragonie.com/contact my post data>>> _CSRF_INDEX=RROVnoF3BodlAfuAL2BVhPCt&_CSRF_TOKEN=R7ZlSNjMolMbLrvQhmoa5a2Ln1SdIHKcPqQnrRJotLU%3D&name=mmmmmm&company=mmmmmm&email=mmmm%40gmail.com&phone=5555555555&subject=Technical+Advice&body=nnnnnnnnn & i have attached a proof of my concept ^_^ Hope You will fix it soon ^_^ Thanks
Actions
View on HackerOne
Report Stats
  • Report ID: 145260
  • State: Closed
  • Substate: informative
  • Upvotes: 1
Share this report