Pinning leaks message content
Posted: Mon Oct 28, 2024 6:30 am
Message pinning was found to lack input data validation, so that arbitrary messages can be pinned and leaked back to an unauthorized client
Improper input validation allows pinning of arbitrary messages (in private channels), leaking the message content back to the sender.|
https://hackerone.com/reports/1062538
Improper input validation allows pinning of arbitrary messages (in private channels), leaking the message content back to the sender.|
https://hackerone.com/reports/1062538