No Rate Limit on CrowdSignal Polls when Adding Comment
Low
Vulnerability Details
Hi team!
I hope this isn't duplicate :/
I created a poll on CrowdSignal.com (https://poll.fm/10226924)
When adding a comment, there is no rate limit. You can see my comments on my poll.
1. Go to any poll.
2. Turn on Intercept and Add a Comment.
3. Send request to Intruder.
4. Set your payloads and start attack.
There is no rate-limit.
## Impact
No rate-limit on comments.
Actions
View on HackerOneReport Stats
- Report ID: 488923
- State: Closed
- Substate: resolved
- Upvotes: 14