Thanks to visit codestin.com
Credit goes to github.com

Skip to content

[BUG] password reset: mail server error discloses user email #887

New issue
New issue
Closed
#957
Closed
[BUG] password reset: mail server error discloses user email#887
#957
Labels
backendIssues that require a backend changebugSomething isn't workinggood first issueGood for newcomersrustPull requests that update Rust code
@thielj

Description

@thielj
thielj
opened on Mar 29, 2024

Describe the bug
An error while sending the password reset email discloses the email address associated with a user name.

Screenshot 2024-03-29 123448

To Reproduce
Setup the mail server to reject the email and start the password reset sequence.

Expected behavior
Sensitive user data should not be exposed.

Additional context
v0.5.0 docker image (lldap/lldap:stable)

Metadata

Metadata

Assignees

No one assigned

    Labels

    backendIssues that require a backend changebugSomething isn't workinggood first issueGood for newcomersrustPull requests that update Rust code

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions