Proof of Concept Disclaimer:
This website is a private demonstration created solely for the purpose of responsible vulnerability disclosure through Bugcrowd. It simulates a security flaw in the Immutable Passport authentication flow.
Important Notes:
This is a controlled Proof of Concept for security research only.
Only test accounts and emails should be used.
Do not enter or use any real personal or production user data.
This PoC does not promote or facilitate malicious activity.
Access is restricted and shared only with authorised security researchers.
HTTPS is not enforced for simplicity; the vulnerability is protocol-agnostic.
--- POC: Authentication Bypass and Identity Extraction ---
--- POC: Guardian Privilege Escalation from Low Privilege Client---