Missing Authentication In IDAttend’s IDWeb Application
Vulnerability Details
Missing authentication in the GetLogFiles method in IDAttend’s IDWeb application 3.1.013 allows retrieval of sensitive log files by unauthenticated attackers.
Affected Versions
Discovered in: 3.1.013
Fixed Versions
Fixed in: 3.1.053