Loading HuntDB...

Application Error disclosure, Verification token seen error and user able to change password

K
Kartpay
Submitted None
Reported by amol01

Vulnerability Details

Technical details and impact analysis

Improper Authentication - Generic
## Summary: Application Error disclosure, Verification token seen error and user able to change password ## Browsers Verified In: Broswer version: Google Chrome is up to date Version 75.0.3770.100 (Official Build) (64-bit) ## Steps To Reproduce: [add details for how we can reproduce the issue] Steps to reproduce issue: 1. https://merchant.kartpay.com/register Enter Firstname, Enter LastName, Enter “Email address”, Enter Phone and Click on SIGN UP Press SIGN UP button 2. We are getting below error and Failed to authenticate on SMTP server with username "xtravalue" using 2 possible authenticators. Authenticator LOGIN returned Expected response code 250 but got an empty response. Authenticator PLAIN returned Expected response code 250 but got an empty response. Also token exposed in error message 'https://merchant.kartpay.com/verification/2AK9vH0sQVwpAIMy7THNYrvBQkqgEGptPCWHqw87ZnT6ko 3. Copied Verification token and Paste in browser, here you can changed password page https://merchant.kartpay.com/verification/2AK9vH0sQVwpAIMy7THNYrvBQkqgEGptPCWHqw87ZnT6kog8z3 ## Supporting Material/References: Please find attachment SMTP Error.doc * [attachment / reference] ## Impact Impact : #1 Attacker can enter find email id and phone number of customer easily in India, and change his/her password #2 SMTP error, give all file name on sever related to Authentication

Report Details

Additional information and metadata

State

Closed

Substate

Duplicate

Submitted

Weakness

Improper Authentication - Generic