I found a flaw in the Apple Store page and they fixed it without saying “Thanks” (bozhkoff.com) 7 points by atanasb 11y ago ↗ HN
[–] momofuuku 11y ago ↗ No offense but no you didn't, this is internet garbage thanks don't post anymore
[–] lettergram 11y ago ↗ It may have been a flaw, but it wasn't a security issue.Further, the email starts off with,"Thank you for contacting the Apple Product Security team."
[–] kungpoo 11y ago ↗ How is this a security flaw? [–] xtrumanx 11y ago ↗ This is seems to be a case of "Missing Function Level Access Control"[0] as defined by the Open Web Application Security Project (OWASP).I highly suggest browsing OWASP's Top 10[1] if you are a software developer and believe this is not a security vulnerability.[0] https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Funct...[1] https://www.owasp.org/index.php/Top_10_2013-Top_10
[–] xtrumanx 11y ago ↗ This is seems to be a case of "Missing Function Level Access Control"[0] as defined by the Open Web Application Security Project (OWASP).I highly suggest browsing OWASP's Top 10[1] if you are a software developer and believe this is not a security vulnerability.[0] https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Funct...[1] https://www.owasp.org/index.php/Top_10_2013-Top_10
4 comments
[ 628 ms ] story [ 1137 ms ] threadFurther, the email starts off with,
"Thank you for contacting the Apple Product Security team."
I highly suggest browsing OWASP's Top 10[1] if you are a software developer and believe this is not a security vulnerability.
[0] https://www.owasp.org/index.php/Top_10_2013-A7-Missing_Funct...
[1] https://www.owasp.org/index.php/Top_10_2013-Top_10