3 matches found
CVE-2025-24948
In JotUrl 2.0, passwords are sent via HTTP GET-type requests, potentially exposing credentials to eavesdropping or insecure records...
CVE-2025-24949
In JotUrl 2.0, is possible to bypass security requirements during the password change process...
PT-2025-16357 · Joturl · Joturl
Name of the Vulnerable Software and Affected Versions: JotUrl version 2.0 Description: The issue involves passwords being sent via HTTP GET-type requests, potentially exposing credentials to eavesdropping or insecure records. Recommendations: For JotUrl version 2.0, consider disabling the use of...