Joseph Cox on Nostr: New: very popular pregnancy tracking app 'What to Expect' is refusing to fix a series ...
Published at
2024-11-14 14:04:30Event JSON
{
"id": "988b60f4f81ef007f4fa7591227381d42752d5cf2290b2e426792cdc9e2f2ca7",
"pubkey": "9ce94d472fbfc49efc3c4c46acd8cde824027618053e509ef442612dee294863",
"created_at": 1731593070,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/josephcox/statuses/113481683442474457",
"activitypub"
]
],
"content": "New: very popular pregnancy tracking app 'What to Expect' is refusing to fix a series of vulnerabilities, including one that allows for a full account takeover, exposing peoples' health data. Password reset flow is easy to access and brute force https://www.404media.co/pregnancy-tracking-app-what-to-expect-refuses-to-fix-issue-that-allows-full-account-takeover-2/",
"sig": "699830d032065b500d5844c8814ab5ce57d37eead486ba57c7e46e47873309664e3e7308fc7c2490abb22f71bf6e856cce6e82d538d631233f7e46f2068cd13f"
}
