Medium severity6.6NVD Advisory· Published Feb 16, 2022· Updated Jun 17, 2026
CVE-2022-22792
CVE-2022-22792
Description
MobiSoft - MobiPlus User Take Over and Improper Handling of url Parameters Attacker can navigate to specific url which will expose all the users and password in clear text. http://IP/MobiPlusWeb/Handlers/MainHandler.ashx?MethodName=GridData&GridName=Users
Affected products
2- MobiSoft/eharmonyv5Range: MobiPlus
Patches
Vulnerability mechanics
References
1- www.gov.il/en/departments/faq/cve_advisoriesnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.