Hoax Clearing Center

X-He-Spam-Score: -2.2

Return-Path: <mh.sec262@gmail.com>

Delivered-To: dropbox@plan.io

Received: from m.launch.gmbh ([127.0.0.1])

by m.launch.gmbh with LMTP id 6CIsHuFfAWI4JAAAJzdhvw

for <dropbox@plan.io>; Mon, 07 Feb 2022 19:07:29 +0100

X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on m.launch.gmbh

X-Spam-Level:

X-Spam-Status: No, score=-2.2 required=5.0 tests=BAYES_00,DKIM_SIGNED,

DKIM_VALID,DKIM_VALID_AU,DMARC_PASS,FREEMAIL_FROM,HTML_MESSAGE,

RCVD_IN_DNSWL_NONE,RCVD_IN_MSPIKE_H2,SPF_HELO_NONE,SPF_PASS,

T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.2

X-Spam-Report:

* -0.0 RCVD_IN_DNSWL_NONE RBL: Sender listed at

* https://www.dnswl.org/, no trust

* [209.85.221.177 listed in list.dnswl.org]

* -1.9 BAYES_00 BODY: Bayes spam probability is 0 to 1%

* [score: 0.0000]

* -0.1 SPF_PASS SPF check passed

* -0.1 DMARC_PASS DMARC check passed

* -0.0 RCVD_IN_MSPIKE_H2 RBL: Average reputation (+2)

* [209.85.221.177 listed in wl.mailspike.net]

* 0.0 FREEMAIL_FROM Sender email is commonly abused enduser mail

* provider (mh.sec262[at]gmail.com)

* 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record

* 0.0 HTML_MESSAGE BODY: HTML included in message

* -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from

* author's domain

* 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily

* valid

* -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature

* -0.0 T_SCC_BODY_TEXT_LINE No description available.

X-Spam-Score: -2.2

Envelope-to: inbox+rlxc+36be+hoax-clearing-center@plan.io

Authentication-Results: m.launch.gmbh; dmarc=pass (p=none dis=none) header.from=gmail.com

Authentication-Results: m.launch.gmbh; spf=pass smtp.mailfrom=mh.sec262@gmail.com

Authentication-Results: m.launch.gmbh;

dkim=pass (2048-bit key; unprotected) header.d=gmail.com header.i=@gmail.com header.b="TlbdoqZL";

dkim-atps=neutral

Received: from mail-vk1-f177.google.com (mail-vk1-f177.google.com [209.85.221.177])

(using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits))

(No client certificate requested)

by m.launch.gmbh (Postfix) with ESMTPS id 3100E84C2A

for <inbox+rlxc+36be+hoax-clearing-center@plan.io>; Mon, 7 Feb 2022 19:07:29 +0100 (CET)

Received: by mail-vk1-f177.google.com with SMTP id v192so8331337vkv.4

for <inbox+rlxc+36be+hoax-clearing-center@plan.io>; Mon, 07 Feb 2022 10:07:29 -0800 (PST)

DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=gmail.com; s=20210112;

h=mime-version:from:date:message-id:subject:to;

bh=t2e7nbqHR+ncsSYJNdVe16FZbrlsqIh0h7nqQrcKFaI=;

b=TlbdoqZLPKyQxdZENNrFOmmBuNwuvQppE5MKhliSuUyrHafTIUuNtUEe1Vd845k3Li

2E64f6w/2HvSCNDRhRSzOIcUOXOphAgR8KpJjmlrpzMsJiVai1dSsWqzkKzs8WdIvPAq

2YlVQ7NFFwqci16pUE76zjcHfuJvnPDgGcWi9krebFRrWP2VneAbqLX2el8QlSQYLzaT

y4nbDb59Z8ypnFtq46Qf9NGpbIsoauzNCGA8WZL3swbeaooT92/RusclngdrBDL53c8n

jNCtSDqWjKDsonyCfF6llr47rIZ70nEs0NvF5E6SRzeyQR/2a7NPEfkUxslA++7OlJmv

wZDg==

X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;

d=1e100.net; s=20210112;

h=x-gm-message-state:mime-version:from:date:message-id:subject:to;

bh=t2e7nbqHR+ncsSYJNdVe16FZbrlsqIh0h7nqQrcKFaI=;

b=B0kfZjiDmU01Js0iOiYTnJU9zuPfj8TcP3bT6qGRzuNCecwX0u1fx4nQKLhDMlstxm

43byoDA9/7dObjf+H5y7IqhRi38TsDkIUP3QHoHHcEBLWrDi41y4kMeBzIbQ3XyxDFca

5YlsYPODCefxeFZAA0GWvGQWRRCKj3C+ZKjs8Db12oGBkX4R6ZgswlL/K1qEO6wDn7J0

wy4dWyvwo8L/obycTF8GeC6zrb83WbJJYOyuzXsYUX+Ht6cE3OSEo48XbXLfqWfqscIA

P/v9nLuE2us5wZTML8xQoEn0ncpeSthZyyeoISGAA8DDWKmK9SHruxOHgCVIOJsP6n2i

Ee/A==

X-Gm-Message-State: AOAM533y+FjG1XO0R1bbjFllrav/sg/cItSVvaPE4mCrolqx7U29sybr

mhpcNP+t/H0Wlt1zfMyX5ut031ZmKM4irxEuBrHiqj6TEoW5WA==

X-Google-Smtp-Source: ABdhPJz11fZBfAgAJg7XEf5N+quP5OL3pnyajXvmOrYjmz3AKbw9QkgN660Sgcp/A7T9CCtz1rtBIR5AWT81w2Ej298=

X-Received: by 2002:a05:6122:45:: with SMTP id q5mr389202vkn.6.1644257247745;

Mon, 07 Feb 2022 10:07:27 -0800 (PST)

MIME-Version: 1.0

From: Muhammad javad <mh.sec262@gmail.com>

Date: Mon, 7 Feb 2022 23:07:14 +0500

Message-ID: <CAKhtc+GhJG48GeRMeR0a07G6DjiYqo5MJqnOo7k+9Ah0NpY+wQ@mail.gmail.com>

Subject: Vulnerability in your website

To: inbox+rlxc+36be+hoax-clearing-center@plan.io

Content-Type: multipart/alternative; boundary="0000000000002bdb5b05d77179c8"

--0000000000002bdb5b05d77179c8

Content-Type: text/plain; charset="UTF-8"

Hi team

I found a vulnerability in your website and want to disclose it to you.

Let me know if you have any active bug bounty program or is there any

compensation for reporting vulnerabilities?

Looking forward to hearing from you

Best regards

Usman

--0000000000002bdb5b05d77179c8

Content-Type: text/html; charset="UTF-8"

Content-Transfer-Encoding: quoted-printable

<div dir=3D"auto">Hi team<div dir=3D"auto"><br></div><div dir=3D"auto">I fo=

und a vulnerability in your website and want to disclose it to you.</div><d=

iv dir=3D"auto"><br></div><div dir=3D"auto">Let me know if you have any act=

ive bug bounty program or is there any compensation for reporting vulnerabi=

lities?</div><div dir=3D"auto"><br></div><div dir=3D"auto">Looking forward =

to hearing from you</div><div dir=3D"auto"><br></div><div dir=3D"auto">Best=

regards</div><div dir=3D"auto">Usman</div><div dir=3D"auto"><br></div></di=

v>

--0000000000002bdb5b05d77179c8--