On 2022/02/10 18:22:27 arslan kabeer wrote: > Hi there, > I am security researcher and I have found a DMARC vulnerability which I > reported from this attack an attacker can spam your users by send them > email using your website official email address, kindly forward this to the > development team. > hoping for a bounty for my ethical disclosure of this vulnerability to you. > Waiting for your response. > Always Best Regards > Arslan
You have sent your security report to a public address. The correct address for reports is secur...@apache.org. Mark
