You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Some backend API methods (i.e. for creating user accountt) do not properly validate the input. For example, it is theoretically possible to create an empty user account (with all fields empty).
Given the overall application nature and the state it's currently in, this does not present a real problem (we are no aware of any actual vulnerability). The current solution for authentication and authorization should be replaced (or extended) with something more robust anyway.
The text was updated successfully, but these errors were encountered:
Some backend API methods (i.e. for creating user accountt) do not properly validate the input. For example, it is theoretically possible to create an empty user account (with all fields empty).
Given the overall application nature and the state it's currently in, this does not present a real problem (we are no aware of any actual vulnerability). The current solution for authentication and authorization should be replaced (or extended) with something more robust anyway.
The text was updated successfully, but these errors were encountered: