Interviewing for a asp.net meme developer position, and found out that the resumes/applications uploaded to their website are stored really predictably and shittily. No read write access and anyone can easily dump all applicants taxforms/resume pdfs/applications.
Is it a really bad idea to bring this up during an interview? I look like a piece of shit because I would have to have looked through someone else's info in order to know it's possible. I also feel it will give the vibe of me somehow strong arming them and demanding compensation for doing it during the interview, but they should actually know their site is shit if that's what I'm applying to work on.
so what do I do, use it for leverage or white-knight send info anonymously
pic unrelated
Embarrassing the company is a big no-no.
>>60809978
do not do it during the interview, talk to someone after it.
>>60809978
either
1. look at other applicants resumes, find out stuff that set you appart and things you are better at, put emphasis on said stuff.during interview
never tell them about their flawed wbsite
2.do interview, proceed to get hired or rejected
then find out if they have a bug bounty program.
2.a if they do explain them in due form why their site is shit and wait for money
2.b.1 if no bounty proram and hired, tell them about the issue, they might not care tho
2.b.2 if no bounty program and rejected you don't need to give a fuck and either be nice and tell them or walk away, not sure if selling this info would be valuable in any way + your resume would still be in there
>>60809978
they might try to have you arrested for hacking so no.