How I Reported a Vulnerability to the Dutch Government — All for a Lousy T-Shirt

mrtom001.medium.com · Snehil · 9 hours ago · bug-bounty
quality 2/10 · low quality
0 net
AI Summary

A researcher reported a high-severity information disclosure and user enumeration vulnerability to the Dutch government's NCSC-NL, resulting in a fix but only receiving a t-shirt as compensation instead of meaningful bounty.

Tags
information-disclosure user-enumeration bug-bounty responsible-disclosure government-security bragging-post
Entities
NCSC-NL Dutch Government

Severity: High | Type: Information Disclosure + User Enumeration | Status: Fixed — NCSC-NL Coordinated Disclosure

Continue reading on Medium »

← Back to stories