An attacker can submit arbitrary projects to their service accounts and obtain full information on projects of other users.

Disclosed: 2024-03-12 09:58:42 By marvelmaniac To linkedin

High

Vulnerability Details

No vulnerability description provided or it is restricted.

Actions

View on HackerOne

Report Stats

Report ID: 2291999
State: Closed
Substate: resolved
Upvotes: 84

Share this report