Exposure of Sensitive Information to an Unauthorized Actor in kcal-app/kcal
Sep 27th 2021
An attacker can view the foods and other informations in the application through direct call to api functions without any authenication
Proof of Concept
Step 1 ) Go to number]=1&page[size]=12 http://demo.kcal.cooking/api/v1/recipes?page[number]=1&page[size]=12 Now we can see the entire food and recipes lists that present in the application[
Authenication bypassed and exposed the information due to lack of restriction for api functions.