Public C2FO bug reports.

Team Bounty Title
C2FO - [] Open Redirect
C2FO - All Active user sessions should be destroyed when user change his password!
C2FO - The server supports only older protocols for HTTPS connections
C2FO - is releasing sensitive Information about Database Configuration.
C2FO - Password reset token leakage through referrer at
C2FO - User guessing/enumeration at
C2FO - OPTIONS Method Enabled