The Contact Customer Support feature in the TigerText Free Private Texting app before 3.1.402 for iOS sends a log-file e-mail message with unencrypted credentials, which allows remote attackers to obtain sensitive information by sniffing the network or leveraging access to an e-mail endpoint.
Max CVSS
5.0
EPSS Score
0.37%
Published
2013-04-04
Updated
2013-04-05
1 vulnerabilities found