Thank You

Thank you to Febin for finding a CSRF allowing malicious attackers the opportunity to post messages from a victims account. This was resolved using tokens.

Thank you to Vict0ni who found that an older restored login page held a redirection bug that was resolved, but reappeared. It was fixed upon his notification of the bug.

Thank you to Febin for finding that our security.txt pointed to an incorrect credits page that was subsequently fixed

Thank you for finding a bug in our shopping cart that allowed negative numbers to be entered, which subsequently made amounts less than zero.

Thank you for noticing our DMARC records required updating from p=NONE to p=QUARANTINE to then p=REJECT

Thank you for reporting an issue with long passwords and other long inputs that would lead to performance issues for the user

Thank you for reporting a security issue with our /out/ service

Thank you for finding a bug in third party sharing where it was possible to duplicate the U field, enabling our content to show but a bad actors website to be linked through to. Provided a detailed report and screen captures which aided us hugely in resolving the issue.

Thank you for noticing our LinkedIn page wasn't reserved and made it available to us

Thank you for finding a bug in the 404 not found pages of the Find Network

Thank you for finding that we had not registered a required S3 bucket for development and holding it for us

Thank you for finding an XSS bug in our contact form

Thank you for finding a critical bug in our Forgot Password service

Thank you for finding an XSS bug in the OG:URL field

Reported a security issue in posting of urls

Finding a bug in the signup process