You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@fineract.apache.org by "Varun Jain (Jira)" <ji...@apache.org> on 2021/03/15 09:00:00 UTC

[jira] [Commented] (FINCN-264) Critical Login bug

    [ https://issues.apache.org/jira/browse/FINCN-264?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17301510#comment-17301510 ] 

Varun Jain commented on FINCN-264:
----------------------------------

Adding the URL to the PR that solves this issue.

> Critical Login bug 
> -------------------
>
>                 Key: FINCN-264
>                 URL: https://issues.apache.org/jira/browse/FINCN-264
>             Project: Fineract Cloud Native
>          Issue Type: Bug
>          Components: fineract-cn-mobile
>            Reporter: Vatsal Patel
>            Priority: Critical
>         Attachments: 20210315_111653[1].mp4
>
>   Original Estimate: 10m
>  Remaining Estimate: 10m
>
> When user is offline or suddenly goes offline, and enter wrong or random credentials then without checking user is taken to passcode and then dashboard activity of previously signed in account. This is a major security threat.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)