CVE-2020-27414

Name of the Vulnerable Software and Affected Versions: Mahavitaran android application versions 7.50 and prior

Description: The issue concerns the transmission of sensitive information in URL parameters, which may lead to information disclosure if unauthorized parties access the URLs via server logs, referrer header, Man-in-the-Middle (MITM) attacks, or browser history.

Recommendations: For Mahavitaran android application versions 7.50 and prior, consider restricting access to sensitive information and avoid using URL parameters to transmit such data until a fix is available. As a temporary workaround, restrict access to server logs and referrer headers to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.