A vulnerability was disclosed by Google's Project Zero in Cloudflare's CDN and DDoS prevention service, specifically affecting HTML parser for certain features. This resulted in sensitive information leaking of other Cloudflare customers. Bugcrowd, a security platform, was not directly affected but has invalidated all sessions as a precautionary measure. Users of the Bugcrowd API are advised to rotate their credentials and change their password due to potential risks. The company thanks users for their understanding and offers support if needed.