Improper Removal of Sensitive Information Before Storage or Transfer in liangliangyy/djangoblog
Feb 11th 2022
The application leaked emails of unvalidated users to anonymous user.
Proof of Concept
- Step 1: Go to http://127.0.0.1:8000/register and create account. After create success, you will receive URL like http://127.0.0.1:8000/account/result.html?type=register&id=4
- Step 2: Open another browser and paste link, you will see email of unvalidated user with id=4
Revealing users' personal information. The application should only show the message immediately after successful registration, not all the time.