Hi Janus, How can I report some high impact security vulnerabilities that I have found on gnu.org web app?
Also, does gnu.org has a bug bounty program or reporting bugs reward policy? The vulnerabilities that I have found affects the core API of gnu.org which allows unauthorized users to get access to other user's data that they don't have access to it. Regards, -Salah https://hackerone.com/salaheldeen101 https://bugcrowd.com/Salah-Mosbah
