8 matches found
EUVD-2020-30158
Malware in sbrugna...
CVE-2020-9337
In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request...
golfbuddy.jp Cross Site Scripting vulnerability OBB-3935093
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2020-9337
In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request...
CVE-2020-9337
In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request...
CVE-2020-9337
In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request...
CVE-2020-9337
CVE-2020-9337 affects GolfBuddy Course Manager 1.1, where passwords are transmitted via a GET request using base64 encoding. This exposes confidential data because base64 is not encryption and GET parameters can be logged or exposed in browser history and server logs. NVD CVSS3.1 vector CVSS:3.1/...
CVE-2020-9337
In GolfBuddy Course Manager 1.1, passwords are sent with base64 encoding via a GET request. Recent assessments: horshark at March 09, 2020 8:13pm UTC reported: Recap Nothing deep, passwords are sent using Base64. Requires Ability to monitor networking traffic during user authentification. Loot...