No rate limit in send verification code to Email

Summary:

No rate limit in send verification code to Email

Steps To Reproduce:

1. Create an account and login https://dashboard.example.io/signin then ask verification code to mail.
2. Click resend code and capture the request in burpsuite.

3. move the request to Intruder and go to position and clear and put payload type "Null payloads" and generate "100" payloads and click start attack.
4. Boom 100 verification recieve my Email.

Impact

Attacker can bomb victim mobile inbox and cause MTN to loose the charges of sms in vein.