Indian white hat hackers Harsh Jaiswal and Rahul Maini claim to have discovered multiple flaws that allowed them to access Apple servers. The duo found three Apple hosts running a content management system (CMS) backed by Lucee, which is a dynamic, Java-based, tag and scripting language used for rapid web application development. The IT giant promptly addressed the issue, but requested the experts to not disclose the flaw before they make some other changes. The development team behind the software has also fixed the bug by restricting access to CFm files directly.”]
Source: https://securityaffairs.co/wordpress/113572/hacking/apple-paid-bug-bounty.html