Vulnerability: Unauthorized Access to Administrative Interface and Premium Features in Testes de Codigo Mobile Application

CVE-2021-25648 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage.

Learn more about our Web Application Penetration Testing UK.