| Summary | An issue in the API endpoint /AccountMaster/GetCurrentUserInfo of INROAD before v202402060 allows attackers to access sensitive information via a crafted payload to the UserNameOrPhoneNumber parameter. |
|---|---|
| Publication Date | Oct. 1, 2024, 3:15 a.m. |
| Registration Date | Oct. 1, 2024, noon |
| Last Update | Nov. 15, 2024, 5:35 a.m. |