The glitch momentarily revealed past users’ names, phone numbers and email addresses over the span of less than a week.

A website security fluke on Redfin.com momentarily exposed past users’ data when others logged onto listings. The glitch lasted for less than a week, the company confirmed.

When the portal’s users viewed real estate listings and a contact information form popped up, the form would briefly be completed with information from past users of the site, including their names, email addresses and phone numbers — then disappear.

If viewers looked at listings on the site without JavaScript enabled, however, that contact information would stay visible. JavaScript is a programming language that creates dynamic or interactive content on websites, and can be turned off.

“We recently identified a technical error on the website that temporarily made it possible for the e-mail address and/or phone number of a previous visitor to be visible to another user on a rental listing page,” a Redfin spokesperson told Inman in an email. “The error was active for less than a week and was remediated as soon as we were made aware of it. We do not collect sensitive information or financial data on this website.”

The website issue only revealed the contact information of one past user at a time, but current users hypothetically could have gathered contact information for multiple past users by visiting property listings on the site repeatedly.

The email addresses and phone numbers were also confirmed to belong to actual users, The Intercept, which first reported the website issue, discovered by using reverse phone number and email search databases.

Redfin is allowed to share private information, according to its privacy policy, but only when the request for that information comes with a disclosure. The property contact form on the company’s website does not include a disclosure regarding shared data.

The website glitch was first discovered on the real estate company’s desktop browser, and after Redfin initially fixed the problem there, it continued to be an issue on its mobile listings until The Intercept contacted Redfin a second time, the news outlet said.

Redfin’s portal receives about 50 million monthly users, according to Rocket, which acquired the real estate company last spring.

Update: This story has been updated with a comment Redfin sent to Inman.

Email Lillian Dickerson

Redfin | websites
Show Comments Hide Comments
Sign up for Inman’s Morning Headlines
What you need to know to start your day with all the latest industry developments
By submitting your email address, you agree to receive marketing emails from Inman.
Success!
Thank you for subscribing to Morning Headlines.
Only 3 days left to register for Inman Connect Las Vegas before prices go up! Don't miss the premier event for real estate pros.Register Now ×
Limited Time Offer: Get 1 year of Inman Select for $199SUBSCRIBE×
Log in
If you created your account with Google or Facebook
Don't have an account?
Create an Account
Forgot your password?
No Problem

Simply enter the email address you used to create your account and click "Reset Password". You will receive additional instructions via email.

Forgot your username? If so please contact customer support at (510) 658-9252

Password Reset Confirmation

Password Reset Instructions have been sent to

Subscribe to The Weekender
Get the week's leading headlines delivered straight to your inbox.
Top headlines from around the real estate industry. Breaking news as it happens.
15 stories covering tech, special reports, video and opinion.
Unique features from hacker profiles to portal watch and video interviews.
Unique features from hacker profiles to portal watch and video interviews.
It looks like you’re already a Select Member!
To subscribe to exclusive newsletters, visit your email preferences in the account settings.
Account Settings
Up-to-the-minute news and interviews in your inbox, ticket discounts for Inman events and more
1-Step CheckoutPay with a credit card
By continuing, you agree to Inman’s Terms of Use and Privacy Policy.

You will be charged . Your subscription will automatically renew for on . For more details on our payment terms and how to cancel, click here.

Interested in a group subscription?
Finish setting up your subscription
×