Vulnerabilities (CVE)

Filtered by vendor Zalora Subscribe
Filtered by product Zalora
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-11384 1 Zalora 1 Zalora 2024-11-21 5.0 MEDIUM 9.8 CRITICAL
The Zalora application 6.15.1 for Android stores confidential information insecurely on the system (i.e. plain text), which allows a non-root user to find out the username/password of a valid user via /data/data/com.zalora.android/shared_prefs/login_data.xml.