CVE-2018-15656
CVE-2018-15656 affects 42Gears SureMDM prior to 2018-11-27, where an attacker can issue a GET request to /api/register/:email with a base64-encoded email and an ApiKey header to determine whether a user account exists. The underlying issue is information disclosure through the registration endpoi...