Laransec/Mobicint

Releases0

Information Disclosure in Mobicint API for Credit Unions

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2021-36436 ↗	Apr 20, 2023Thursday, 20 April 2023, 21:15	5.3 MEDIUM	—
An issue in Mobicint Backend for Credit Unions v3 allows attackers to retrieve partial email addresses and user entered information via submission to the forgotten-password endpoint.