Touchbase.Ai · Touchbase.Ai · CVE-2020-26220
**Name of the Vulnerable Software and Affected Versions**
toucbase.ai versions prior to 2.0
**Description**
The issue allows anyone with access to uploaded images of other users to obtain geolocation, device, and software version data if this information is present in the image's exif data, due to the failure to strip exif data from images.
**Recommendations**
For versions prior to 2.0, update to version 2.0 to resolve the issue.