Information Disclosure in Shotwell Web Publishing Plugins: Potential Password and OAuth Token Plaintext Transmission

CVE-2017-1000024 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Shotwell version 0.24.4 or earlier and 0.25.3 or earlier is vulnerable to an information disclosure in the web publishing plugins resulting in potential password and oauth token plaintext transmission

Learn more about our Web App Pen Testing.