3 matches found
CVE-2021-3005
MK-AUTH through 19.01 K4.9 allows remote attackers to obtain sensitive information e.g., a CPF number via a modified titulo aka invoice number value to the central/recibo.php URI...
CVE-2021-3005
creationtimestamp| type| source ---|---|--- 2021-01-03 07:34:57+00:00| seen| https://t.me/cibsecurity/21515...
CVE-2021-3005
CVE-2021-3005 affects MK-AUTH through version 19.01 K4.9. Multiple sources describe an information-disclosure vulnerability where remote attackers can obtain sensitive data (e.g., CPF numbers) by sending a modified titulo (invoice number) to the central/recibo.php URI. The connected documents do ...