Cyber Security

SmarterTools SmarterTrack 7922 Information Disclosure

Avatar photo

Bybmalandrone

Sep 24, 2021 , , , , , ,
Authored by Andrei Manole

SmarterTools SmarterTrack 7922 suffers from an information disclosure vulnerability.

# Exploit Title: SmarterTools SmarterTrack 7922 - 'Multiple' Information Disclosure 
# Google Dork: intext:"Powered by SmarterTrack"
# Date: 23/01/2020
# Exploit Author: Andrei Manole
# Vendor Homepage: https://www.smartertools.com/
# Software Link: https://www.smartertools.com/smartertrack
# Version: TESTED ON 10.x -> 14.x and to Build 7922 (set 9, 2021)
# Tested on: Windows 10
POC:
VULNERABLE TARGET/Management/Chat/frmChatSearch.aspx
This file disclosure all agents id and first name and second name

Related posts:

Emotet malware now distributed in Microsoft OneNote files to evade defenses
Styx Stealer Creator's OPSEC Fail Leaks Client List and Profit Details
Top 6 Security Challenges of SMEs
Hackers Can Abuse Visual Studio Marketplace to Target Developers with Malicious Extensions
Bearded Barbie hackers catfish high ranking Israeli officials

You missed

Fox News News

Retired Georgia news anchor falls into ravine, rescued by helicopter in elaborate rescue: report

Dec 25, 2024 foxnews.com
Fox News News

Ravens rout Texans on Christmas, inch closer to division title

Dec 25, 2024 foxnews.com
NFL

CFP viewership topped by Saturday NFL games

Dec 25, 2024 espn.com
NFL

Bills’ Hamlin-backed HEARTS Act signed into law

Dec 25, 2024 espn.com