NA

CVE-2021-4644029

Vulnerability Summary

Strap versions before 3.6.9 and 4.1.5 disclose a user's password due to simply base64 encoding it and sticking it in a cookie.

Exploits

Strap versions prior to 369 and 415 disclose a user's password due to simply base64 encoding it and sticking it in a cookie ...