The vulnerability of the if_get_addbook.php component of the White Shark System platform allows a intruder to gain unauthorized access to protected information.

The vulnerability of the ifgetaddbook.php component of the White Shark System is related to the lack of authentication for the critical function. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

CVE-2020-20472

White Shark System WSS 1.3.2 has a sensitive information disclosure vulnerability. The ifgetaddbook.php file does not have an authentication operation. Remote attackers can obtain username information for all users of the current site...

Information disclosure

White Shark System WSS 1.3.2 has a sensitive information disclosure vulnerability. The ifgetaddbook.php file does not have an authentication operation. Remote attackers can obtain username information for all users of the current site...

CVE-2020-20472

CVE-2020-20472 affects White Shark System (WSS) 1.3.2. The vulnerability is in if_get_addbook.php, which operates without authentication, allowing remote attackers to obtain username information for all users on the current site. The condition arises from lack of access control on that endpoint (...