The implementation of POST with the username and password in the URL parameters exposed the credentials. More infomration is available in fineract jira issues 726 and 629.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache fineract 0.4.0 |
||
apache fineract 0.5.0 |
||
apache fineract 0.6.0 |
||
apache fineract |