hak5 vulnerabilities

[i help with bad securety ting]

i find vulnerabilities in hak5 and report them hak5 pleas contact me 

[i help with bad securety ting]

i found out that hak5 has no hash for ther web site i found this out wen i cloned the web site and i could see no hash pleas fix this

[digininja]

Give us more information about this missing hash. What should be hashed and where would this hash be stored?

[i help with bad securety ting]

the users and passwords there not secured and if some one haks in to an hak5 member they can order any thing for free pleas store this in a incripted server

[i help with bad securety ting]

i will messege you tomorrow 

[digininja]

How do you know the passwords aren't hashed?

[i help with bad securety ting]

becuse i try to clone the web surver to check you guys are my fav compeny so then i tryd my password and my username and i saw no hash or encrepton

 

[digininja]

Where are you expecting to see the hash? Do you understand how web technology works? You submit your password to the site, it then hashes it and stores or compares it, by cloning the client side content you won't see any of the server side code.

 

If you want to read about the server side code for this forum, it is all here.

 

https://invisioncommunity.com/

 

 

[dark_pyrro]

Sounds like a beg bounty...