Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

A profile page of a user can be denied from loading by appending .html to the username

Low
G
GitLab
Submitted None

Team Summary

Official summary from GitLab

This class of bugs would be considered as `Informative` due to minimal security impact, as per latest program policy.

Actions:
View on HackerOne
Reported by maruthi12

Vulnerability Details

Technical details and impact analysis

Violation of Secure Design Principles
**Summary:** I was able to create a user with the username "dashboard.html". Once, the account is set up, when the user clicks on his profile, the actual dashboard will show up instead of his profile page. Same can be done for all the HTML pages in GitLab. ## Steps To Reproduce: 1. Register a new user with "some_html_page_in_gitlab.html" 1. After logging in. click on the profile tab, it will be redirected to the dashboard page. 1. I even tried the username "profile.html", it is getting directed to the profile tab. ## Impact The major impact here I can think of is that a user can hide his profile from the public just by having a clowny username.

Report Details

Additional information and metadata

State

Closed

Substate

Resolved

Bounty

$200.00

Submitted

Weakness

Violation of Secure Design Principles