Session Token Exposure in TerraMaster TOS 3.1.03: Unauthorized Access to Active Sessions

CVE-2018-13352 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Session Exposure in the web application for TerraMaster TOS version 3.1.03 allows attackers to view active session tokens in a world-readable directory.

Learn more about our Web App Pen Testing.