Session Token Exposure in TerraMaster TOS 3.1.03: Unauthorized Access to Active Sessions

CVE-2018-13352

Session Exposure in the web application for TerraMaster TOS version 3.1.03 allows attackers to view active session tokens in a world-readable directory.

Learn more about our Web App Pen Testing.