The issue is we were using phone in "KEYS_NOT_ALLOWED" but while taking user phone inputs we took phoneNumber as field, which exposed phone number publicly.
Severity/Priority
[x] Critical
[ ] High
[ ] Medium
[ ] Low
Additional Information
Checklist
[x] I have read and followed the project's code of conduct.
[x] I have searched for similar issues before creating this one.
[x] I have provided all the necessary information to understand and reproduce the issue.
[x] I am willing to contribute to the resolution of this issue.
Issue Description
The issue is we were using phone in "KEYS_NOT_ALLOWED" but while taking user phone inputs we took phoneNumber as field, which exposed phone number publicly.
Severity/Priority
Additional Information
Checklist