CVE-2012-2630 - Fleecy Mount

Description

The Puella Magi Madoka Magica iP application 1.05 and earlier for Android places cleartext Twitter credentials in a log file which allows remote attackers to obtain sensitive information via a crafted application.

Reference

http://jvn.jp/en/jp/JVN23328321/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000054