1 réponse à ce sujet

[Dai Grepher]

The person who leaked the info of Keep also had the URLs for Keep in the screenshots!

 

I plugged a URL into my browser and it brought me to the login screen. I input my user information and it took me right into the Keep despite the fact I was not sent an acceptance email into the beta!

 

Now anyone with an Origin account could gain access to the Keep using this exploit!

 

I highly recommend correcting this vulnerability by changing the URLs or adding more security measures to the Keep!

 

EDIT: I might be mistaken on this. I was sent an email stating I was being considered for the beta, and when I tried to login it said I was not accepted yet. Perhaps within that timeframe they enabled my account but never sent me an email saying I was in. So my account may have been granted access without my being aware of it.

 

Still, the staff may want to double-check to make sure.

 

Sorry if this caused anyone any distress.

[Allan Schumacher]

This thread is closed.  Note that if you think something is a giant exploit and you're concerned about it on our behalf, making a giant thread about it creating a Streisand effect is probably not the best way to go about it.