Vulnerabilities (CVE)

Filtered by vendor Mahadiscom Subscribe

Filtered by product Mahavitaran

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-27413	1 Mahadiscom	1 Mahavitaran	2021-12-08	1.9 LOW	4.2 MEDIUM
An issue was discovered in Mahavitaran android application 7.50 and below, allows local attackers to read cleartext username and password while the user is logged into the application.
CVE-2020-27414	1 Mahadiscom	1 Mahavitaran	2021-12-03	4.3 MEDIUM	5.9 MEDIUM
Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header, MITM or browser history.