MobiSoft - MobiPlus User Take Over and Improper Handling of url Parameters Attacker can navigate to specific url which will expose all the users and password in clear text. http://IP/MobiPlusWeb/Handlers/MainHandler.ashx?MethodName=GridData&GridName=Users
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mobisoft_-_mobiplus | Mobisoft_-_mobiplus_project | - | - |