Automattic: Permanent DoS at https://happy.tools/ when inviting a user

Hi Team, At Happy Tools, I found an exception to the exclusion of denial of service. The web app allows creating an account/login into an account either using Gmail or WordPress. The vulnerability lies in the fact that after registration, a user can change their email without verification. Steps ...