A message from the Coinitrage.com Admin
1. Anyone can do a Whois lookup to know we are not hosted at namecheap, we are DDOS protected on a dedicated server
2. These "vulnerabilities" are not of high priority, why? Because they are not financial vulnerabilities. We put as much time and effort as possible into testing the financial side of the platform, not some petty issues such as viewing our cPanel login page like the OP has pointed out.
We would also like to point out that this user approached us in the most hostile way possible, with his opening statement being along the lines of "you better fix your security holes before someone takes you down"
We did not see any benefit communicating with this user, since he opened with a threat, so we ended the chat as soon as possible....and this is how we treat most live supports that threaten our clients and our work.
All funds are safe, and always will be, our platform is completely financially secure. Do not believe FUD.
1. At no point did I threaten your staff. I contacted you as a matter of urgency to let you know. You should be aware that ANY vulnerability is a risk! the fact your now saying you know you have them but there not financial related is very concerning.
2. I did not say you better fix it before someone takes your down.. I said its important before some hacker comes along and takes your down.. which is true!
3. you send back the worst reply I've seen from a supposed "legit" service. saying go ahead and try.. Dose that sound like something a responsible site admin would say?
4. I don't think you even know the holes you have in your system the fact you can't even fix the .js error thats "constantly" poping up tells me this is a script site you have bought from some hyip seller and have absolute no knowledge of networking or website security!
5. Your dealing with people MONEY! any website error should be looked into and fixed or you should take down the site until you are 100% sure that EVERY possible hole is fixed.. The fact you admit you have vulns and you don't really care rings alarm bells....
6. The fact I was so blunt in chat was I was shocked to find what I did.. and then reading all the people who have been sending you money something had to be said... You shot me down in flames and have yet to even ask me what issues I found.. which is also very concerning....
I look forward to your reply.......
UGMZ