Codeshare Information Leakage Vulnerability

An information leakage vulnerability has been identified in Codeshare version 1.0.0. This vulnerability allows access to a user's full WebSocket history by modifying the ID parameter in the URL of a private text-sharing pad. Although deleted text is removed from the frontend, it remains stored on the backend and can be retrieved via WebSocket, potentially exposing sensitive information such as passwords and keys.

Impact

Exploitation of this vulnerability could lead to unauthorized access to deleted data from WebSocket history, including sensitive information that users may have pasted and deleted under the misconception that it was permanently removed.

Reproduction

To reproduce this vulnerability, access a private pad on Codeshare by entering a valid ID in the URL. Once the pad is open, delete some text from the editor. Although the text will disappear from the frontend, it will still be available in the WebSocket history. By capturing WebSocket traffic with a tool like Burp Suite, the deleted text can be retrieved, demonstrating the information leakage.