4 matches found
Larvata Flygo 安全漏洞
Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker, after authenticating as a normal user, to access a specific employee's sign-in record by manipulating the...
Larvata Flygo 安全漏洞
Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker, after authenticating as a normal user, to manipulate the announcement ID in a specific Url parameter to access...
Larvata Flygo 跨站脚本漏洞
Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo suffers from a cross-site scripting vulnerability that stems from Flygo's announcements feature not filtering special characters when adding new announcements. A remote attacker can exploit this vulnerability alon...
Larvata Flygo 安全漏洞
Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker authenticated as a regular user to manipulate user data by specifying the employee's ID in an API parameter and...