Information Disclosure Vulnerability in ClipSoft REXPERT 1.0.0.527 and Earlier Versions

Information Disclosure Vulnerability in ClipSoft REXPERT 1.0.0.527 and Earlier Versions

CVE-2019-17321 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

ClipSoft REXPERT 1.0.0.527 and earlier version have an information disclosure issue. When requesting web page associated with session, could leak username via session file path of HTTP response data. No authentication is required.

Learn more about our Web App Pen Testing.