API information leakage
Some private information is leaked from the database through the API.
When the ThaliApp requests events information from the website, private information is revealed. For example, the registration dates of every participant of an event and their member ids.
When querying the API, data is returned that is private and seemingly unnecessary.
The API should only return necessary data.