{"id": "H1:7894", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "Localize: Full path disclosure", "description": "I signed up for localize with haxorsistz@gmail.com, and localize sent me a verification link which was:\r\n`http://www.localize.io/verify/e6be646b24pdd3w6d5c27ppa9a267ee7`\r\nWhen I visited that link I found it was showing the following error:\r\n`Fatal error: Call to a member function setEmail_lastVerificationAttempt() on a non-object in /var/www/vhosts/lvps178-77-99-228.dedicated.hosteurope.de/httpdocs_localize/index.php on line 120 `\r\nwhich includes the full path of the website.This should be mitigated.", "published": "2014-04-17T19:20:29", "modified": "2014-04-18T05:18:04", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://hackerone.com/reports/7894", "reporter": "siddiki", "references": [], "cvelist": [], "lastseen": "2018-04-19T17:34:11", "viewCount": 2, "enchantments": {"score": {"value": -0.2, "vector": "NONE", "modified": "2018-04-19T17:34:11", "rev": 2}, "dependencies": {"references": [], "modified": "2018-04-19T17:34:11", "rev": 2}, "vulnersScore": -0.2}, "bounty": 0.0, "bountyState": "resolved", "h1team": {"profile_picture_urls": {"medium": "https://profile-photos.hackerone-user-content.com/000/000/152/377fed61fc81ae7be46b421b7c21b287fc14f80e_medium.png?1397692219", "small": "https://profile-photos.hackerone-user-content.com/000/000/152/ea4486c84479fe42c54fdbfdba183ba9d66469ca_small.png?1397692219"}, "handle": "localize", "url": "https://hackerone.com/localize"}, "h1reporter": {"hacker_mediation": false, "disabled": false, "username": "siddiki", "is_me?": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/003/502/495ce200b20327249cf98c74c023860bc90df36a_small.jpg?1498464593"}, "hackerone_triager": false, "url": "/siddiki"}}

{}