Harden resend throttling

Disclosed: 2017-04-16 17:42:44 By whit537 To gratipay
Medium
Vulnerability Details
Over in #87531, we're about to roll out a protection against using our "resend email verification" feature to mail-bomb a third party. However, [email protected] and [email protected] are not unlikely to fold down to the same address. In order to close that loophole, I suppose we'd need to either implement email address parsing—but what folding rules are we going to observer?—or throttle based on the authenticated user and not the `to` field, as @rohitpaulk suggested over on #87531 for other reasons.
Actions
View on HackerOne
Report Stats
  • Report ID: 108645
  • State: Closed
  • Substate: resolved
  • Upvotes: 5
Share this report