Lucene search
K

4 matches found

CNNVD
CNNVD
added 2021/08/09 12:0 a.m.4 views

Larvata Flygo 安全漏洞

Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker, after authenticating as a normal user, to access a specific employee's sign-in record by manipulating the...

4.3CVSS5.2AI score0.00764EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/08/09 12:0 a.m.3 views

Larvata Flygo 安全漏洞

Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker, after authenticating as a normal user, to manipulate the announcement ID in a specific Url parameter to access...

5.5CVSS5.8AI score0.00641EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/08/09 12:0 a.m.7 views

Larvata Flygo 跨站脚本漏洞

Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo suffers from a cross-site scripting vulnerability that stems from Flygo's announcements feature not filtering special characters when adding new announcements. A remote attacker can exploit this vulnerability alon...

5.4CVSS5.5AI score0.00456EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/08/09 12:0 a.m.4 views

Larvata Flygo 安全漏洞

Larvata Flygo is an attendance clocking software from Larvata Taiwan. Larvata Flygo contains Insecure Direct Object Reference has a security vulnerability that allows a remote attacker authenticated as a regular user to manipulate user data by specifying the employee's ID in an API parameter and...

4.3CVSS5.2AI score0.00677EPSS
Exploits0References2
Rows per page
Query Builder