CVE-2018-13342

CVE-2018-13342

EPSS 1.1%

The server API in the Anda app relies on hardcoded credentials.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gustavosilva.me/blog/2018/10/23/How-I-hacked-Anda-the-public-transportation-app-of-Porto-CVE-2018-13342.html