Reward $1500
Overview of the Vulnerability
Sensitive data exposure can occur when sensitive data is not encrypted, or behind an authorization barrier. When this information is exposed it can place sensitive data, such as secrets, at risk. This can occur due to a variety of scenarios such as not encrypting data, SSL not being used for authenticated pages, or passwords being stored using unsalted hashes. Examples of such data include, but are not limited to: personally identifiable information (PII), Social Security numbers, medical data, banking information, and login credentials.
Sensitive data relating to the business was exposed. This data could be exfiltrated and used by an attacker to sell access to databases and database content, or use credentials identified to take over accounts, amongst other attack vectors.
When performing an analysis at the root of the application, it was possible to find a file "users.csv", which contains information on 5412 users.
The information is: ID, Username, Title, First name, Last name, email, and status (active or inactive).
Information like this is very important, particularly for phishing attacks and social engineering as a whole.
Steps to Reproduce
Access the url below and it will perform an automatic download of the mentioned file:
https://c4ng4c31r0[.]com/users.csv
https://c4ng4c31r0[.]com/users.xlsx
Proof of Concept (PoC)
Status:
Resolved.
Reward:
Top comments (0)