Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Circl
Circladded 2023/05/27 12:4 p.m.3 views

CVE-2023-28131

creationtimestamp| type| source ---|---|--- 2023-05-27 12:04:21+00:00| seen| https://t.me/KomunitiSiber/270 2023-05-27 12:36:19+00:00| seen| Telegram/4JcQAuBxmm8dw44PHvyl2tx5RMR2k6iaSB2MvR2ejzDQ 2023-05-27 12:37:01+00:00| seen| https://t.me/CyberSecurityTechnologies/8371 2023-06-26 02:49:49+00:00...

9.6CVSS7.5AI score0.00909EPSS
Exploits0References3
CVE
CVEadded 2023/04/24 12:0 a.m.66 views

CVE-2023-28131

Summary of CVE-2023-28131 (expo.io / Expo SDK) The vulnerability affects the Expo framework, specifically the OAuth/AuthSession Redirect Proxy used for social sign-in. The root issue involves insufficient protection of callback/redirect handling via auth.expo.io, enabling an attacker to cause a v...

9.6CVSS9.2AI score0.00909EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/04/24 12:0 a.m.7 views

CVE-2023-28131

A vulnerability in the expo.io framework allows an attacker to take over accounts and steal credentials on an application/website that configured the "Expo AuthSession Redirect Proxy" for social sign-in. This can be achieved once a victim clicks a malicious link. The link itself may be sent to th...

9.2AI score0.00909EPSS
Exploits0References2
Rows per page
Query Builder