Comment by cycomanic
2 years ago
I would argue that even if the behaviour was as intended, at least the fact that it was not documented was a bug (and a pretty serious one at that).
2 years ago
I would argue that even if the behaviour was as intended, at least the fact that it was not documented was a bug (and a pretty serious one at that).
Again: you don't generally get bounties for finding "bugs"; you get them exclusively for finding qualified vulnerabilities.