mjhjmtu

Clash Royale CLAN TAG #URR8PPP up vote 21 down vote favorite 2 This question already has an answer here: How to disclose a security vulnerability in an ethical fashion? 6 answers A company I used to work for developed a Point Of Sale system that also has an eCommerce portion. While working there, I discovered massive flaws with their security model. Simply put, there is 0 server side validation. Any user, logged in or not, can do things like edit prices, fake transactions, mess with time sheets, etc all from the comfort of their home. I reported this several times verbally, but it was mostly ignored as not a priority. They have since expanded their clientele, and now serve quite a few clients. I have verified that the exploits still work just as they did several years ago. I have no interest in saving face for this company, they treated me and many others very poorly and abusively, forcing overtime without pay and similar transgressions. What is the best way to rep