Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security Vulnerability: Lack of Authorization Mechanism #228

Open
Somesh-nayek opened this issue Oct 7, 2024 · 1 comment
Open

Security Vulnerability: Lack of Authorization Mechanism #228

Somesh-nayek opened this issue Oct 7, 2024 · 1 comment

Comments

@Somesh-nayek
Copy link

The routes are not checking whether the person who wants to add or delete information from an account is authorised to do that or not.
If the check is not implemented ,anyone can delete anyone's data and that will be a security breach.

Screenshot 2024-10-07 122656
Screenshot 2024-10-07 122704

In the example snippet above there is not authorization check.
@Sahil1786 ,I want to work on this .please assign me this under GSSOC-2024
@github-actions GitHub Actions
Copy link

github-actions bot commented Oct 7, 2024

Congratulations, @Somesh-nayek! 🎉 Thank you for creating your issue. Your contribution is greatly appreciated and we look forward to working with you to resolve the issue. Keep up the great work!

We will promptly review your changes and offer feedback. Keep up the excellent work! Kindly remember to check our contributing guidelines

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@Somesh-nayek