Month: December 2021

CVE-2021-41716 Mahavitaran Android Application: Account take over via OTP Fixation

Vulnerable Software: Maharashtra State Electricity Board Android Application Vulnerability: Account takeover via OTP Fixation Affected Version: 7.50 and prior Patched: Yes Vendor Homepage: https://www.mahadiscom.in/en/home/ App store link: https://play.google.com/store/apps/details?id=com.msedcl.app&hl=en_IN&gl=US CVE: CVE-2021-41716 CVE Author: Tejas Nitin Pingulkar Exploit Available: POC Available About Affected Software The Official App for Consumer by Mahavitaran (MSEDCL). Mahavitaran Consumer App enables consumers to avail Mahavitaran services at his/her fingertips. The […]

CVE-2020-27413 Mahavitaran Android Application: Clear-text password storage

Vulnerable Software: Maharashtra State Electricity Board Android Application Vulnerability: Clear-text password storage Affected Version: 7.50 and prior Patched: Yes Vendor Homepage: https://www.mahadiscom.in/en/home/ App store link: https://play.google.com/store/apps/details?id=com.msedcl.app&hl=en_IN&gl=US CVE: CVE-2020-27413 CVE Author: Tejas Nitin Pingulkar Exploit Available: POC Available About Affected Software The Official App for Consumer by Mahavitaran ( M.S.E.D.C.L.). Mahavitaran Consumer App enables consumers to avail Mahavitaran services […]

CVE-2020-27416 Mahavitaran Android Application: Account take over via OTP bypass

Vulnerable Software: Maharashtra State Electricity Board Android Application Vulnerability: Account take over via OTP bypass Affected Version: 7.50 and prior Patched: Yes Vendor Homepage: https://www.mahadiscom.in/en/home/ App store link: https://play.google.com/store/apps/details?id=com.msedcl.app&hl=en_IN&gl=US CVE: CVE-2020-27416 CVE Author: Tejas Nitin Pingulkar Exploit Available: POC Available About Affected Software The Official App for Consumer by Mahavitaran ( M.S.E.D.C.L.). Mahavitaran Consumer App enables consumers to avail Mahavitaran services at his/her […]

Scroll to top