Explore Problems
Showing 20 of 6,868 problems · matching your filters
AI-generated vibe-coded apps ship with live security holes
Applications built quickly with AI coding tools like Replit, Lovable, and Cursor often go to production with unaddressed access-control vulnerabilities, and their builders typically lack security expertise. High engagement (532 upvotes) suggests broad resonance, though it surfaces via a solution launch rather than direct user complaints.
Bank enforces a fraud-reporting deadline it caused the customer to miss
A business account holder faced unauthorized ACH transfers but could not report them within the bank's 60-day window because the bank itself had frozen access to the account. The bank denied reimbursement citing the same deadline its freeze prevented the customer from meeting.
AI agents can leak credentials without a security checkpoint
AI agents operating autonomously can inadvertently expose sensitive credentials during task execution, with no built-in guardrail to catch this before damage occurs. A builder created a checkpoint tool after experiencing this firsthand, highlighting a systemic gap in agentic AI security tooling.
Creditors Fail to Remove Outdated Info Past FCRA Limits
A consumer disputes that a lender continues reporting a charged-off account past the FCRA permissible reporting window, and the dispute has gone unresolved for over 45 days. This points to a broader gap in tools that help consumers track and enforce credit-reporting compliance deadlines.
Lenders Keep Withdrawing After Full Loan Payoff Is Accepted
A borrower paid off an RV loan in full, yet the lender continued withdrawing payments and demanding additional interest with no response to written disputes. This highlights a recurring loan-servicing failure around payoff processing and post-payoff overcharges.
Banks reorder transaction postings to manufacture overdraft fees
Customers report that banks process delayed merchant settlements out of chronological order, or backdate transaction postings, in ways that artificially trigger overdraft fees. This is a structural practice in account fee mechanics affecting checking account holders broadly.
Lenders Ignore ACH Revocation Requests and Keep Withdrawing
A consumer revoked ACH authorization in writing but the lender continued withdrawing funds and became unresponsive to follow-up. This reflects a recurring gap in enforcing payment revocation rights and resolving unauthorized-withdrawal disputes.
Managing notifications and search across multiple Slack workspaces
Solo consultants and multi-workspace Slack users struggle with overwhelming notification volume and constant tuning to stay responsive without losing focus. Slack search also fails to quickly surface historical context, files, or decisions across busy channels and threads.
Bank phone support enabled account takeover via social engineering
A customer reports that a bank phone representative allowed an impersonator to change account details, enabling fraud; the account remains open with unresolved fraudulent items afterward.
Merchant withholds funds after bank formally cancels the dispute
A customer canceled a credit card dispute and the bank closed the case with confirmation, yet the merchant continued withholding the transaction funds under review despite the dispute no longer being active. This reveals a process gap between issuer dispute closure and merchant fund release with no clear resolution path.
Meta business verification blocks indie devs from shipping multi-user apps
An indie developer building a social media post scheduler found that Meta requires formal business verification (with legal/corporate registration) before any user besides the developer can authenticate via the app, effectively blocking solo/unregistered developers from launching multi-user products on Meta's platform. He worked around it by open-sourcing and self-hosting the tool instead.
Slack Messages Get Lost in Large Team Channels
Users on large Slack teams report that important messages sent to them get buried and lost in high-volume channels, with no easy way to recover them later. This creates a recurring pain point around message retrieval and information loss at scale.
Fintech app conditions ACH revocation on completing account closure
A customer formally requested revocation of ACH withdrawal authorization in writing, but the company refused unless the customer also completed a separate in-app account closure process, despite Regulation E granting a standalone right to revoke ACH authorization.
Fraud charges appear on a dormant card whose replacement was never delivered
A cardholder who had not used their credit card in years and never received its mailed replacement discovered fraudulent charges appearing on the account near its expiration date. The gap between replacement-card issuance and delivery appears exploitable for fraud.
Mortgage servicer declares loss-mitigation file incomplete after giving flawed guidance
A borrower in loss mitigation followed instructions given directly by their mortgage servicer, only for the servicer to later declare the file incomplete and refer the loan to foreclosure, despite the borrower's good-faith compliance with the guidance provided.
Candidates Questioned on Skills They Never Listed on Their Resume
Job seekers report being asked in interviews about skills they never claimed on their own resumes, reflecting a resume-integrity and grounding gap. The mismatch wastes interview time and erodes trust between candidates and employers.
Consumer credit file shows bank accounts they never opened
A consumer disputing their credit report discovered accounts attributed to them by a banking-data reporting firm that they say they never knowingly opened, authorized, or used. This points to a gap in how account-opening identity is verified before being reported to credit files.
Credit card payment processing errors cause duplicate charges and bad refunds
Customers report issuers mishandling payment crediting, triggering duplicate ACH autopay attempts and unauthorized refunds of payments meant to satisfy the balance. This creates confusing account states and disputes over what is actually owed.
Auto lender secretly diverts on-time lease payments to an undisclosed tax charge
A lessee's automatic lease payments were drafted on time, but the lender internally redirected part of each payment toward an annual municipal excise tax without disclosure, causing the base lease payment to fall short and triggering a 37-day delinquency flag despite the consumer having paid the full balance.
Debt collector reports identity-theft-linked debt as legitimate on credit file
A consumer states a debt collector has no accounts belonging to them yet continues falsely reporting the debt on their credit file, tracing back to identity theft they never authorized.