bypass Claudflare access crm.mautic.com
None
Vulnerability Details
Hi @unikrn!
Hello, I see that when you switch to the crm,unikrn.com, login attempts are filtered by Claudflare Access
to avoid brute-force account attacks, but we can ByPASS Claudflare access. Example:
https://crm.unikrn.com/oauth/v2/authorize_login
## Impact
having accounts, we can easily get into the admin area
Actions
View on HackerOneReport Stats
- Report ID: 507012
- State: Closed
- Substate: resolved
- Upvotes: 7