Page 1 of 1

Doubt regarding vulnerability submission

Posted: Sat Mar 19, 2022 6:01 am
by Smit41443207
Hello, I have some doubts regarding vulnerability submissions.
1. Isn't phpinfo.php or info.php files no longer consider as vulnerability by OBB?

2. Moreover information disclosure via server-status path is also not consider?

Please respond to this doubts.

Thank You.

Re: Doubt regarding vulnerability submission

Posted: Mon Mar 21, 2022 5:45 am
by x1admin
Hello, yes we don't accept server-status and phpinfo

Re: Doubt regarding vulnerability submission

Posted: Mon Mar 21, 2022 12:13 pm
by 0xr0cky
Information disclosure via "Server error in '/' application" with stacktrace is no longer considered?

Re: Doubt regarding vulnerability submission

Posted: Sun Oct 02, 2022 8:00 am
by ishtiya26001964
If a vulnerability submission report goes To unpatched/hold, is it patched? And how many days does it take for the replay to come.