Subscribe via feed.

Platinum Mobile 1.0.4.850 Authorization Bypass

Posted by deepcore on October 3, 2020 – 1:25 pm

Platinum Mobile version 1.0.4.850 has a broken access control. The mobile application connects to the company-specific server, which does not properly restrict the access to confidential data. Thus, an authenticated attacker can disclose the company’s payroll, personal information of other employees without having appropriate privileges to do so.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »