Misconfiguration of Merchant id in jwt header + Weird Debug mode enabling behavior leads to exposed OTP of mobile number.
High
Vulnerability Details
No vulnerability description provided or it is restricted.
Actions
View on HackerOneReport Stats
- Report ID: 1080901
- State: Closed
- Substate: resolved
- Upvotes: 3