Summary by SammamQureshi
2FA Secret in Sorare was not rotating. The user can enable 2FA without scan QR Code / Secret.
2FA Secret is not rotated
Disclosed by SammamQureshi- Engagement Undisclosed
- Disclosed date almost 5 years ago
- Points 5
- Priority P4 Bugcrowd's VRT priority rating
- Status Resolved This vulnerability has been accepted and fixed