Before we get going with this one, I need to add a small disclaimer: I am not a security researcher, neither a bug bounty hunter nor anything similar. That means when I report a vulnerability somewhere, I either really wanted to try out a technique that I read about, or I stumbled over it during my regular work. Now, why am I mentioning this? Well, mostly to be clear that this is not how I make a living. I work a regular job at Codesphere and that’s what I get paid for, so I don’t need vulnerabilities to be accepted so that I can get paid. My biggest focus is always to make products I, or our users use more secure.
[Read More]