CISO at AscendShine ...ย โขย 2m
Hi Niket Raj Dwivedi, Iโve been exploring Medial and love the platformโs potential for the startup community! However, I stumbled upon a critical bug that might need your attention. When uploading images, the app retains EXIF metadata, including GPS location data, which could expose user privacy. For example, this image (https://lnkd.in/d7ZfV_Ht) uploaded on Medial shows location coordinates in its EXIF data (https://lnkd.in/d43JBSEj). This could unintentionally reveal sensitive info like home or office locations. A quick fix could be stripping EXIF data (especially GPS) during upload using tools like Pillow or ImageMagick. Happy to discuss further or assist in testing! Keep up the great work with Medialโ rooting for your success! Also, if Medial has a bug bounty program, Iโd be thrilled to contribute to securing the platform. Keep up the amazing workโcheering for your success! #Medial
Download the medial app to read full posts, comements and news.