High severity7.5NVD Advisory· Published Mar 22, 2026· Updated Apr 15, 2026

CVE-2019-25605

Description

EquityPandit 1.0 contains an insecure logging vulnerability that allows attackers to capture sensitive user credentials by accessing developer console logs via Android Debug Bridge. Attackers can use adb logcat to extract plaintext passwords logged during the forgot password function, exposing user account credentials.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

play.google.com/store/apps/detailsnvd
www.exploit-db.com/exploits/46933nvd
www.vulncheck.com/advisories/equitypandit-insecure-logging-information-disclosurenvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000