Severity: High
Bug Name: Username Enumeration
Website:
https://getbarkeep.org
PoC URL:
https://getbarkeep.org/wp-json/wp/v2/users/
Description:
Your application reveals different responses when valid or invalid usernames/emails are submitted during login or password recovery, allowing attackers to enumerate valid users.
Impact:
- Facilitates account discovery by malicious actors.
- Increases risk of targeted attacks and spam.
- Reduces overall security posture of authentication systems.
Suggested Fix:
- Return generic error messages.
- Add delay or lockout mechanisms after repeated failures.
- Apply bot protection tools like reCAPTCHA.
White Hat Note:
Our goal is to make the internet safer through responsible testing and reporting. We are glad to help secure your site and hope it brings peace of mind. We would appreciate hearing about reward or acknowledgment you may offer.