Lucene search
PRIOn knowledge basePRION:CVE-2016-6548HistoryJul 13, 2018 - 8:29 p.m.
Design/Logic Flaw
2018-07-1320:29:00
PRIOn knowledge base
www.prio-n.com
1
The Zizai Tech Nut mobile app makes requests via HTTP instead of HTTPS. These requests contain the userβs authenticated session token with the URL. An attacker can capture these requests and reuse the session token to gain full access the userβs account.
Related
nvd
nvd
CVE-2016-6548
2018-07-13 20:29:00
cve
cve
CVE-2016-6548
2018-07-13 20:29:00
cvelist
cvelist
cert
cert
Zizai Tech Nut contains multiple vulnerabilities
2016-10-25 00:00:00