While I was testing Flipkart, I found that their email encryption library has an error while updating the email.
I request for email update and I had an update link
Parameter is D11Bss+Nb77uFr+Su/LQJE6XXIEPjxQ/UM77fkfc5cYQTUT0ZBbBfk09QA7Zh0Bx+IPlHNZSNYhAco+X5kUtaR/A==
If I just change any letter from the parameter :
e. g :
So, when i try to update the email with the invalid parameters :
Since there was no any real world attack scenario with this issue so it was not considered as issue.