EUVD-2020-27034

Malware in sbrugna...

[Full-Disclosure] Advisory: Upload Authorization bypass in CitrusDB

Advisory: Upload Authorization bypass in CitrusDB A group of students at our lab called RedTeam found an authorization bypass vulnerability in CitrusDB which results in upload of fake credit card data, SQL-Injection and disclosure of credit card data. Details ======= Product: CitrusDB Affected...