| From: | Bruce Momjian <bruce(at)momjian(dot)us> |
|---|---|
| To: | "M(dot)Arslan Kabeer" <arslan(dot)whitehat(at)inbox(dot)eu> |
| Cc: | Ray O'Donnell <ray(at)rodonnell(dot)ie>, pgsql-www(at)postgresql(dot)org |
| Subject: | Re: Any Update on Reported Vulnerability |
| Date: | 2021-05-04 13:41:12 |
| Message-ID: | 20210504134112.GA27412@momjian.us |
| Views: | Raw Message | Whole Thread | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-www |
On Tue, May 4, 2021 at 12:50:24AM +0300, M.Arslan Kabeer wrote:
> Hi there,
> Team kindly see that this is a P4 priority 4 vulnerability from this attack an
> attacker can spam your users by send them email using your website official
> email address, I have been rewarded 300$-350$ on this same vulnerability,
> kindly some sort of reward would be much appreciated. I have found and reported
> another vulnerability a critical one, kindly take a look.
I now think we need to create a web page we can reference when people
looking for recognition/money try reporting things like this. Obviously
this reporting has attracted many unhelpful people and an official page
might help them to ignore us.
--
Bruce Momjian <bruce(at)momjian(dot)us> https://momjian.us
EDB https://enterprisedb.com
If only the physical world exists, free will is an illusion.
| From | Date | Subject | |
|---|---|---|---|
| Next Message | Jonathan S. Katz | 2021-05-04 13:44:50 | Re: Any Update on Reported Vulnerability |
| Previous Message | Magnus Hagander | 2021-05-04 10:43:37 | Re: Add versions.json endpoint with latest release information |