Vulnerabilities > CVE-2019-11383 - Unspecified vulnerability in Wifi FTP Server Project Wifi FTP Server 1.8.3

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

wifi-ftp-server-project

critical

NVD

Published: 2019-04-22

Updated: 2024-11-21

Summary

An issue was discovered in the Medha WiFi FTP Server application 1.8.3 for Android. An attacker can read the username/password of a valid user via /data/data/com.medhaapps.wififtpserver/shared_prefs/com.medhaapps.wififtpserver_preferences.xml

Vulnerable Configurations

Part	Description	Count
Application	Wifi_Ftp_Server_Project Wifi FTP Server Project Wifi FTP Server 1.8.3	1

References

https://pastebin.com/6uT9jhDR
https://pastebin.com/6uT9jhDR