Keybase: Remote Server Restart Lead to Denial of Service by only one Request.

2016-02-04T19:14:23
ID H1:114698
Type hackerone
Reporter ahmed_abdalla
Modified 2016-06-18T02:00:05

Description

https://keybase.io/_/api/1.0/getsalt.json?uid=36965a2dc9bbd814e8558a77040c5419

Poc:

set wrong uid in this examble i chabge last numbre from 9 to 8

https://keybase.io/_/api/1.0/getsalt.json?uid=36965a2dc9bbd814e8558a77040c5418