Sensitive Information Disclosure Vulnerability in White Shark System (WSS) 1.3.2

Sensitive Information Disclosure Vulnerability in White Shark System (WSS) 1.3.2

CVE-2020-20472 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

White Shark System (WSS) 1.3.2 has a sensitive information disclosure vulnerability. The if_get_addbook.php file does not have an authentication operation. Remote attackers can obtain username information for all users of the current site.

Learn more about our User Device Pen Test.