Encryption fallback returns plaintext silently #165

New Issue

Closed

opened 2026-04-10 16:03:49 +02:00 by shahondin1624 · 0 comments

shahondin1624 commented 2026-04-10 16:03:49 +02:00

Owner

Copy Link

Copy Source

Severity: HIGH

Location

lib/Service/EncryptionService.php:60-62

Description

If encryption fails (e.g., corrupted ICrypto configuration), encrypt() returns the plaintext value as a fallback. This means sensitive data (IBAN, health info) could be stored unencrypted in the database without any indication to the user or admin.

Recommendation

Throw an exception instead of silently returning plaintext. Data loss prevention is secondary to data exposure prevention for IBAN/medical data.

## Severity: HIGH ## Location `lib/Service/EncryptionService.php:60-62` ## Description If encryption fails (e.g., corrupted ICrypto configuration), `encrypt()` returns the plaintext value as a fallback. This means sensitive data (IBAN, health info) could be stored unencrypted in the database without any indication to the user or admin. ## Recommendation Throw an exception instead of silently returning plaintext. Data loss prevention is secondary to data exposure prevention for IBAN/medical data.

shahondin1624 added the backendsecuritypriority:high labels 2026-04-10 16:03:49 +02:00

shahondin1624 referenced this issue from a commit 2026-04-10 16:15:19 +02:00

fix: throw exception instead of returning plaintext when encryption fails (Closes #165)

shahondin1624 referenced a pull request that will close this issue 2026-04-10 16:15:27 +02:00

fix: throw exception instead of returning plaintext when encryption fails (Closes #165) #178

shahondin1624 closed this issue 2026-04-10 16:15:31 +02:00

shahondin1624 referenced this issue from a commit 2026-04-10 16:15:32 +02:00

fix: throw exception instead of returning plaintext when encryption fails (Closes #165) (#178)

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

fix/duplicate-sync-methods

fix/missing-database-transactions

fix/find-archived-filtering-in-memory

fix/n-plus-one-queries-member-list

v0.5.2

v0.3.2

v0.3.1

v0.3.0

v0.2.11

v0.2.10

v0.2.9

v0.2.8

v0.2.7

v0.2.6

v0.2.5

v0.2.4

v0.2.3

v0.2.2

v0.2.1

v0.2.0

Labels

Clear labels

backend

Backend / PHP work

bug

Bug report

database

Database migrations and schema

documentation

Documentation

enhancement

Enhancement or improvement

epic

Epic / feature-group issues

frontend

Frontend / Vue.js work

integration

Nextcloud integrations (Calendar, Contacts, Files)

priority:high

High priority

priority:low

Low priority

priority:medium

Medium priority

security

Security-related work

testing

Tests and test infrastructure

No Label backend priority:high security

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

shahondin1624

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: shahondin1624/Mitgliederverwaltung#165