155 matches found
CVE-2023-43303
An issue in craftbeer bar canvas mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token via captured network traffic...
Line Security Breach
Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line craftbeer bar canvas mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification via a compromised channel access token...
CVE-2023-43303
CVE-2023-43303 affects the Line-based craftbeer bar canvas mini-app (v13.6.1). The root cause is leakage of the channel access token, allowing an attacker to send crafted malicious notifications. The vulnerability impacts confidentiality (HIGH) and enables unauthenticated network-based abuse with...
CVE-2023-43300
An issue in urbanproject mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...
CVE-2023-43298
An issue in SCOL Members Card mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...
Line Security Breach
Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line PARK DANDAN mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification via a compromised channel access token...
Line Security Breach
Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line urbanproject mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification via a compromised channel access token...
CVE-2023-43302
The affected component is the Line sanTas mini-app (v13.6.1). The vulnerability arises from leakage of the channel access token, enabling an attacker to send crafted malicious notifications. Public sources in the connected documents consistently describe this issue as impacting sanTas mini-app on...
CVE-2023-43299
An issue in DA BUTCHERS mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token...
Line Security Breach
Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line SCOL Members Card mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification via a compromised channel access token...
Line Security Breach
Line is an instant messaging platform from Line Inc. A security vulnerability exists in Line DA BUTCHERS mini-app version v13.6.1, which stems from a vulnerability that allows an attacker to send a crafted malicious notification via a compromised channel access token...
PT-2023-28773 · Line · Line
Name of the Vulnerable Software and Affected Versions: Line version 13.6.1 Description: An issue in the studio kent mini-app allows attackers to send crafted malicious notifications via leakage of the channel access token. This leakage enables attackers to exploit the system, potentially affectin...
PT-2023-28771
Name of the Vulnerable Software and Affected Versions Line version 13.6.1 Description An issue in the craftbeer bar canvas mini-app on Line allows attackers to send crafted malicious notifications via leakage of the channel access token. This leakage enables attackers to craft and send malicious...
ai.hyacinth.framework:core-service-admin-server (>=0.5.0 <=0.5.24), ai.hyacinth.framework:core-service-discovery-server (>=0.5.0 <=0.5.24) +7677 more potentially affected by CVE-2022-41966 via com.thoughtworks.xstream:xstream (>=1.1.1 <=1.4.2)
com.thoughtworks.xstream:xstream MAVEN version =1.1.1, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =j8.2.2.0, =Finchley.SR4, =1.0.0.RELEASE, =1.1.0.RELEASE, =1.0.0.RELEASE, =1.1.1.RELEASE, =0.3.3, =1.1.0 - be.ordina:microservices-dashboard-server =1.0.1 and more Source cves: CVE-2022-41966 Source...
ai.hyacinth.framework:core-service-admin-server (>=0.5.0 <=0.5.24), ai.hyacinth.framework:core-service-discovery-server (>=0.5.0 <=0.5.24) +5475 more potentially affected by CVE-2020-26259 via com.thoughtworks.xstream:xstream (>=1.1.1 <=1.4.14)
com.thoughtworks.xstream:xstream MAVEN version =1.1.1, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =0.5.0, =j8.2.2.0, =Finchley.SR4, =1.0.0.RELEASE, =1.1.0.RELEASE, =1.0.0.RELEASE, =1.1.1.RELEASE, =0.3.3, =0.4.0, =0.4.2 and more Source cves: CVE-2020-26259 Source advisory: OSV:GHSA-JFVX-7WRX-43FH...