PT-2025-3192 · Unknown · Smart Toilet Lab - Motius
Manjyot Singh
·
Published
2025-01-09
·
Updated
2025-01-10
·
CVE-2024-56113
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Smart Toilet Lab - Motius version 1.3.11
Description
The issue is related to the Smart Toilet Lab - Motius running with debug mode turned on, which exposes sensitive information defined in the Django settings file through a verbose error page. This occurs because the
DEBUG mode is set to True.Recommendations
For version 1.3.11, set
DEBUG to False to prevent the exposure of sensitive information through verbose error pages. As a temporary workaround, consider restricting access to the error pages until the issue is resolved.Exploit
Fix
Insecure Storage of Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Smart Toilet Lab - Motius