In GolfBuddy Course Manager 1.1, passwords are sent (with base64 encoding) via a GET request.
References
Link | Resource |
---|---|
https://help.golfbuddyglobal.com/sList.asp?searchproduct=29&searchcategory=5 | Vendor Advisory |
https://github.com/0xEmma/CVEs/blob/master/CVEs/CVE-2020-9337-Golf-Buddy-Insecure-Passwords.md | Third Party Advisory |
Configurations
Information
Published : 2020-02-26 06:15
Updated : 2021-07-21 04:39
NVD link : CVE-2020-9337
Mitre link : CVE-2020-9337
JSON object : View
CWE
Products Affected
golfbuddyglobal
- course_manager