Back to search
CVE-2019-11384
Published: Apr 22, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
The Zalora application 6.15.1 for Android stores confidential information insecurely on the system (i.e. plain text), which allows a non-root user to find out the username/password of a valid user via /data/data/com.zalora.android/shared_prefs/login_data.xml.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://pastebin.com/c90h9WfB
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now