Hello,
We are seeking a contractor to help us audit an existing piece of software we had custom developed.
The software takes input from a service called 'Cognito Forms' and then displays form submissions on our custom dashboard on our site.
The current issue that sparked the need for this task is that logged-out users can view all Cognito Forms submissions to the plugin as if they were an admin user (all users accessing this are subscribe level).
That should be a relatively easy fix. However, because such an error got passed our own team as well as the developer, we would like for you to take a deeper look into the program and troubleshoot any UX issues that may present additional security flaws.
Allowing users to see other users Cognito Form submissions is a critical security breach on our part and we need expert eyes to help us harden this software's security.
In your response, please tell me your favorite color or movie. This helps me to determine who actually reads the job description as oppose to those that just throw a canned response at particular job posting keywords.
You will be granted CPanel access and front-end user access to the site in which the customization is displayed.
About the recuiterMember since Mar 14, 2020 Pradeep Srivast
from Karnataka, India