F102. Email uniqueness not properly verified

Description

The system performs a partial check on the uniqueness of email addresses, as it does not properly filter the "+" character. As a result, "[email protected]", "[email protected]" and "[email protected]" are considered independent despite the fact that they all represent the "[email protected]" email account. This lack of validation could cause two independent accounts to be linked to the same email address.

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.