Critical Vulnerability In https://www.ispsystem.com/request-demo

Shivansh Khari shared this problem 5 months ago
Solved

Vulnerability Type: No Rate Limit

Vulnerability Name: No Rate Limit Leads To Mass Request Bombing

Steps To Reproduce:

1. Go To https://www.ispsystem.com/request-demo And Fill The Details And Submit And Send The Request To Burp Suite Intruder And Set Payloads To 200 And 200 Requests Will Be Sent To You.

2. Due To No Rate Limit There Is Request Bombing Towards You.

Impact: No Rate Limit Leads To Request Bombing Which Can Affect The Employee.

Comments (1)

photo
1

Hello.

Thank you for your feedback.

We know about this situation, but at the moment it is not in our immediate

plans.