CVE-2020-12477
CVE-2020-12477
The REST API functions in TeamPass 2.1.27.36 allow any user with a valid API token to bypass IP address whitelist restrictions via an X-Forwarded-For client HTTP header to the getIp function.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →