NordVPN quietly plugged vuln where an HTTP POST request without authentication would return detailed customer data

by
from The Register on (#50B64)
Story ImageFiddle with some numbers and voila

A vulnerability in NordVPN's payments platform allowed anyone to view users' payment information and email addresses, a startling HackerOne entry has revealed."

External Content
Source RSS or Atom Feed
Feed Location http://www.theregister.co.uk/headlines.atom
Feed Title The Register
Feed Link https://www.theregister.com/
Feed Copyright Copyright © 2024, Situation Publishing
Reply 0 comments