Cyber security researcher Leigh-Anne Galloway claims to have discovered a security flaw in MySpace which only required a name, username, and birthdate.  

After a massive breach of password was revealed in 2016, the website admins had disabled all passwords before 2013.  The simple recovery method only needed those three pieces of information of which the username was easily found in the MySpace profile URL and name displayed promptly on that profile homepage.

Galloway reported the flaw last April and did not receive a response but after media attention the flaw was promptly patched.