CVE-2018-14921 : Monstra-Dev User Information Disclosure
CVE-2018-14921 discovered by Nainsi Gupta who is the member of ICSS. It is an achievement for Indian Cyber Security Solutions. The Exploit details are as follows:
Exploit Title: Monstra-Dev User Information Disclosure
Author: Nainsi Gupta
Vendor Homepage: http://monstra.org/
Software Link: https://github.com/monstra-cms/monstra
Product Name: Monstra-dev
Tested on: Windows 10 (Firefox/Chrome)
Proof of Concept
- After registering for as many users you want and then logging out of it.
- You can still see all information about the user.
Highest Selling Technical Courses of Indian Cyber Security Solutions:
Cybersecurity services that can protect your company:
Other Location for Online Courses: