CVE-2025-24948 Information

Description

In JotUrl 2.0 passwords are sent via HTTP GET-type requests potentially exposing credentials to eavesdropping or insecure records.

Reference

https://www.gruppotim.it/it/footer/red-team.html