04/10/16 Warning email send to bounty@mit.edu and security@mit.edu

04/10/16 Response from Garry P Zacheiss

04/10/16 Email requesting thank you letter

06/10/16 Agreement

07/10/16 Reported the bug

07/10/16 Acknowledge by mit

12/10/16 Bug validated and fixed

28/10/16 Thank you letter received


the SQLi was in here:



Sorry i didn't save a printscreen of this one (is the only one i didnt save a printscreen.. I actually made a video but i dont have a copy anymore. sorry guys my fault.