Details
Alert ID 100009
Alert Type Script Passive
Status alpha
Risk Low
CWE 311
WASC 13
Technologies Targeted All
Tags CWE-311
More Info Scan Rule Help

Summary

An email address was found in the HTTP response body. Exposure of email addresses in HTTP messages can lead to privacy violations and targeted phishing attacks.

Solution

Mask email addresses during transmission and ensure proper access controls to protect user privacy and prevent unauthorized access.

Other Info

References

Code

passive/Find Emails.js