Missing SSL Certificate Validation in the Nutfind.com application up to and including 3.9.12 for Android allows a man-in-the-middle malicious user to sniff and manipulate all API requests, including login credentials and location data.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
nutfind nutfind |