All these bugs were found by myself while using the default end-user interface with NO privileged access. I do NOT receive any money or any other benefits, but I expect quality improvement on the respective services because I need to use them frequently.
I created this public catalog due to the chronic lack of attention provided by companies when I tried to make reports. So, this is my last try to catch someone's attention and help companies to understand the importance of taking care of their bugs.
The list that follows shows a brief description of the bugs and respective links to further details. On the page/directory of each bug, there are an extended description and artifacts like screenshots and videos, all of them obfuscated accordingly.
FOR COMPANIES: If you need undisclosed data, refer to the channel where I initially reported according to each bug, or give me the honor of hearing from you.
-
Bug #0 (The last straw)
Company: Banco Inter.
Brief: During a payment, instead of my own data the system has exposed private information of another person. -
Bug #1 (Inception)
Company: Banco Inter.
Brief: While reporting Bug #0, another issue popped up. I noticed that all the chat data was accessable before the session starts and even when the session has already expired. -
Bug #2 (Due date)
Company: Banco Inter.
Brief: The due date field presents the same value of the payment date on the final receipt. -
Bug #3 (Past due date)
Company: Banco Inter.
Brief: App does not accept past due dates. -
Bug #4 (Services bar code)
Company: Banco Inter.
Brief: App scanner does not reconize bar code of recurrent services ("convênios"). -
Bug #5 (Invalid bar code)
Company: Banco Inter.
Brief: App says "Invalid bar code" ("Código de barras inválido") when fail to reconize.