The issue allows attackers to exploit weaknesses in the account management system, leading to unauthorized access. This vulnerability exposes user accounts to takeover, risking personal data and social connections without proper security checks on the feature.
https://hackerone.com/reports/901728