- cross-posted to:
- [email protected]
- netsec
- cross-posted to:
- [email protected]
- netsec
Microsoft Account’s OAuth tokens leaking via open redirect in Harvest App::Reported an OAuth token leak via open redirect in Harvest.
You must log in or register to comment.
3 years from report to patch is fucking abysmal.
Wow, I thought this was further reporting on their leaks earlier this year. Nono, it’s another vulnerability. Microsoft really living up to their reputation…
From the post: "I apologise for the poor and confusing title used before. I have updated the title but I cannot change it everywhere else. Just to clarify This is not a vulnerability in Microsoft.’
Not to defend M$ lol. Just in this case it was Harvest with the vuln.
Ah, thanks for the correction.
