Public CVE-2018-17496 disclosure

eVisitorPass contains default administrative credentials. An attacker could exploit this vulnerability to gain full access to the application.