Received-SPF: pass (google.com: domain of eastonjose114@gmail.com designates 209.85.220.41 as permitted sender) client-ip=209.85.220.41;
MIME-Version: 1.0
References: <CACx2VcHycLhOSXaFSDUedqAWudQ8o1WsffuUMR0JberimuY6pg@mail.gmail.com>
 <CACx2VcGukosvO7dvMtuDdDnG3MoTJ_qH79a-p7gvBE=veBswRg@mail.gmail.com> <CACx2VcEL3Y63cUMe+T791TWqOH=WekKr0nUUDPp5RjxuNftzeQ@mail.gmail.com>
In-Reply-To: <CACx2VcEL3Y63cUMe+T791TWqOH=WekKr0nUUDPp5RjxuNftzeQ@mail.gmail.com>
From: Easton Jose <eastonjose114@gmail.com>
Date: Thu, 24 Aug 2023 00:04:18 +0500
Message-ID: <CACx2VcFTOPEn7xVXKLUW1QCOv7O76MfLvcogWz34S5+6yHNqZA@mail.gmail.com>
Subject: Re: Vulnerability Report-Broken Authentication
To: info@designerliving.com
Content-Type: multipart/alternative; boundary="00000000000007c76606039bc83a"

--00000000000007c76606039bc83a
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Hi Team,

I hope you are well. I've reported a security vulnerability on your website
a long time ago and still haven't heard back from you. I'd really
appreciate it if you can verify my findings and update me regarding the
bounty for the report.

Looking forward to hearing from you.

On Tue, Jun 20, 2023 at 11:29=E2=80=AFPM Easton Jose <eastonjose114@gmail.c=
om>
wrote:

> Hi Team,
>
> I believe that you have had an opportunity to read our previous email
> regarding the vulnerability report. As it's been long already and your te=
am
> hasn't responded to the vulnerability report submitted by me, I was
> expecting $500 for responsible disclosure of vulnerability.
>
> Furthermore I would like to publicly disclose vulnerability reports on ou=
r
> blogs for research and educational purposes. If you have any concerns do
> let me know.
>
> On Wed, Jun 14, 2023 at 11:53=E2=80=AFPM Easton Jose <eastonjose114@gmail=
.com>
> wrote:
>
>> Hi Team,
>>
>> Any update regarding the report and bounty?
>>
>> On Fri, Jun 9, 2023 at 1:49=E2=80=AFAM Easton Jose <eastonjose114@gmail.=
com>
>> wrote:
>>
>>> Hey Team,
>>>
>>> I'm a penetration tester and bug bounty hunter. I have found a potentia=
l
>>> vulnerability in the site. Please review the report below.
>>>
>>> Vulnerability: Broken Authentication & Session Management
>>> We have observed that when we change "password" from one browser in
>>> place of session expiration from another browser it just updates the
>>> password from another browser and the old session gets updated without
>>> being logged out. The flows goes like this:
>>> Broken Authentication and Session Management > Failure to Invalidate
>>> Session > On Password Change
>>> Steps:
>>> 1- Login from two browsers at a time [From Chrome browser and from
>>> Mozilla Firefox].
>>> 2- Change password in settings from chrome browser.
>>> 3- Now Check Mozilla Firefox.
>>> 4- Your Session got "updated" in place of expiration.
>>>
>>> Same goes with when using two different computer systems.
>>> 1- Login from two computers at a time
>>> 2- Change password in settings from computer A.
>>> 3- Now Check computer B.
>>> 4- Your Session got "updated" in place of expiration.
>>>
>>> Recommendations: If Session is Updating from one Browser/Computer so
>>> other should expire first to renew session after login.
>>>
>>> If you require any additional information, please let me know. I'll be
>>> waiting to hear from your side regarding the report and bounty.
>>>
>>> --
>>> Regards,
>>> Easton
>>>
>>

--00000000000007c76606039bc83a
Content-Type: text/html; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr">Hi Team,<br><br>I hope you are well. I&#39;ve reported a s=
ecurity vulnerability on your website a long time ago and still haven&#39;t=
 heard back from you. I&#39;d really appreciate it if you can verify my fin=
dings and update me regarding the bounty for the report.<br><br>Looking for=
ward to hearing from you.<br></div><br><div class=3D"gmail_quote"><div dir=
=3D"ltr" class=3D"gmail_attr">On Tue, Jun 20, 2023 at 11:29=E2=80=AFPM East=
on Jose &lt;<a href=3D"mailto:eastonjose114@gmail.com">eastonjose114@gmail.=
com</a>&gt; wrote:<br></div><blockquote class=3D"gmail_quote" style=3D"marg=
in:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1e=
x"><div dir=3D"ltr">Hi Team,<br><br>I believe that you have had an opportun=
ity to read our previous email regarding the vulnerability report. As it=
9;s been long already and your team hasn&#39;t responded to the vulnerabili=
ty report submitted by me, I was expecting $500 for responsible disclosure =
of vulnerability.<br><br>Furthermore I would like to publicly disclose vuln=
erability reports on our blogs for research and educational purposes. If yo=
u have any concerns do let me know.<br></div><br><div class=3D"gmail_quote"=
><div dir=3D"ltr" class=3D"gmail_attr">On Wed, Jun 14, 2023 at 11:53=E2=80=
=AFPM Easton Jose &lt;<a href=3D"mailto:eastonjose114@gmail.com" target=3D"=
_blank">eastonjose114@gmail.com</a>&gt; wrote:<br></div><blockquote class=
=3D"gmail_quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rg=
b(204,204,204);padding-left:1ex"><div dir=3D"ltr">Hi Team,<br><br>Any updat=
e regarding the report and bounty?</div><br><div class=3D"gmail_quote"><div=
 dir=3D"ltr" class=3D"gmail_attr">On Fri, Jun 9, 2023 at 1:49=E2=80=AFAM Ea=
ston Jose &lt;<a href=3D"mailto:eastonjose114@gmail.com" target=3D"_blank">=
eastonjose114@gmail.com</a>&gt; wrote:<br></div><blockquote class=3D"gmail_=
quote" style=3D"margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,=
204);padding-left:1ex"><div dir=3D"ltr"><div dir=3D"ltr"><div dir=3D"ltr">H=
ey Team,<br><br>I&#39;m a penetration tester and bug bounty hunter. I have =
found a potential vulnerability in the site. Please review the report below=
.<br><br>Vulnerability: Broken Authentication &amp; Session Management<br>W=
e have observed that when we change &quot;password&quot; from one browser i=
n place of session expiration from another browser it just updates the pass=
word from another browser and the old session gets updated without being lo=
gged out. The flows goes like this:<br>Broken Authentication and Session Ma=
nagement &gt; Failure to Invalidate Session &gt; On Password Change<br>Step=
s:<br>1- Login from two browsers at a time [From Chrome browser and from Mo=
zilla Firefox].<br>2- Change password in settings from chrome browser.<br>3=
- Now Check Mozilla Firefox.<br>4- Your Session got &quot;updated&quot; in =
place of expiration.<br><br>Same goes with when using two different compute=
r systems.<br>1- Login from two computers at a time<br>2- Change password i=
n settings from computer A.<br>3- Now Check computer B.<br>4- Your Session =
got &quot;updated&quot; in place of expiration.<br><br>Recommendations: If =
Session is Updating from one Browser/Computer so other should expire first =
to renew session after login.<br><br>If you require any additional informat=
ion, please let me know. I&#39;ll be waiting to hear from your side regardi=
ng the report and bounty.<br><div><br></div>--<br><div dir=3D"ltr"><div dir=
=3D"ltr">Regards,<div>Easton</div></div></div></div></div>
</div>
</blockquote></div>
</blockquote></div>
</blockquote></div>

--00000000000007c76606039bc83a--