@antn discovered an authorization issue that led to disclosure of internal company documentation. We addressed the vulnerability by ensuring the authenticated user belongs to the correct group before granting access.
Reported on 05-11-2016
1,000 pts
