The vulnerability of the Covid-19 contact tracing system’s web app that uses QR code scanning lies in the insufficient protection of operational data, allowing attackers to carry out cross-site attacks.
The vulnerability of the Covid-19 contact tracing system’s web app with QR code scanning lies in the insufficient protection of sensitive data when the username parameter is used on the login page. Exploiting this vulnerability could allow a malicious actor to perform cross-site attacks using a...