Actions
Support #3108
openUnauthenticated Self-Registration Endpoint
Start date:
06/23/2026
Due date:
06/23/2026 (21 days late)
% Done:
100%
Estimated time:
Tester:
Testing Percentages:
0%
Description
The user registration endpoint is accessible without authentication. The endpoint processes requests and returns detailed validation errors, revealing required registration parameters and account creation requirements. This information may assist attackers in crafting valid registration requests and abusing the registration functionality.
Updated by Veng Liza 21 days ago
- Copied from Support #3094: Potential IDOR – Unauthorized Modification of Internal Business Pairing Data added
Updated by Veng Liza 21 days ago
- Copied to Support #3109: Improper Error Handling added
Actions