The vulnerability of Huawei 535-232a router’s micro-programming software, related to access control errors when processing domain names, allows a hacker to intercept packets.

The vulnerability of Huawei 535-232a router’s microprogramming software is related to access control errors during the processing of domain names. Exploiting this vulnerability allows a remote attacker to intercept packets...

CVE-2022-48469

There is a traffic hijacking vulnerability in Huawei routers. Successful exploitation of this vulnerability can cause packets to be hijacked by attackers...

Sea Cormorant Technology hospital food ordering applet has a flawed logic vulnerability

Guangzhou Hai Cormorant Network Technology Co., Ltd, referred to as: Hai Cormorant Technology, was founded on May 19, 2014, focusing on the healthcare industry, the main business includes the development and operation of intelligent mobile service platforms for WeChat Service Number, Alipay Life...

CVE-2019-9682

Dahua devices with Build time before December 2019 use strong security login mode by default, but in order to be compatible with the normal login of early devices, some devices retain the weak security login mode that users can control. If the user uses a weak security login method, an attacker c...

CVE-2019-5291

Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some field...

PT-2019-3608 · Zingbox · Zingbox Inspector

Name of the Vulnerable Software and Affected Versions: Zingbox Inspector versions 1.293 and earlier Description: A security issue exists due to the failure to neutralize special elements in the network traffic handler. This could allow a remote attacker to intercept and modify software update...

Jingdong Financial App has a logic flaw vulnerability

Jingdong Finance APP is an investment software. A logic flaw vulnerability exists in Jingdong Financial APP. Allows attackers to bypass real-name verification by intercepting packets using proxy tools...

Logic Design Vulnerability in LeShang Mall System v2.2.0

LeShang mall system is a based on THINKPHP5.0 as the core development of a free open source professional mall system. LeShang Mall System v2.2.0 has a logical design vulnerability. Attackers can overstep their authority to modify other users' personal information, including user passwords, by...

Logic Design Vulnerability in LemHealth APP, a Smart Health Bracelet from Synerchip Technology

LemHealth APP is a health management software. A logical design vulnerability exists in the LemHealth APP, a smart health bracelet from Synergy Technology. An attacker can reset any password and perform unauthorized operations by catching packets and intercepting changes...

Audi Travel App has a Bursting Vulnerability

Audi Travel App is a travel service software. Audi Travel APP is vulnerable to a blasting vulnerability. An attacker can log in to any user account and perform unauthorized operations by grabbing packets and bursting them...

CVE-2017-15321

Huawei FusionSphere OpenStack V100R006C000SPC102 NFV has an information leak vulnerability due to the use of a low version transmission protocol by default. An attacker could intercept packets transferred by a target device. Successful exploit could cause an information leak...

Unauthorized Access Vulnerability in Xiao Feng Air Ching App Android Version

Ltd. developed with the work of the Xiao Feng Air Dorothy system APP, mainly used to monitor the indoor air quality and Xiao Feng Air Dorothy internal and external machine running status, monitoring items including PM2.5, formaldehyde, oxygen, temperature and humidity, and can be through the APP...

Xiaofeng Air Ching App for Android has an overstepping loophole

Ltd. developed with the work of the Xiao Feng Air Dorothy system APP, mainly used to monitor the indoor air quality and Xiao Feng Air Dorothy internal and external machine running status, monitoring items including PM2.5, formaldehyde, oxygen, temperature and humidity, and can be through the APP...

Smart Heat Temperature Control App for Android suffers from an override access vulnerability

Smart Heat Temperature Control APP a home temperature control software, users only need to add the home's Internet-accessible thermostat to the software, you can use your phone or tablet to control the temperature of your home's HVAC equipment. The Android version of Smart Heat Temperature Contro...

Wise Ride Android App Has Logic Design Flaws

Smart Ride Ride Le app is a smart city public bike rental app. There is a logic design loophole in the Zhixing Jiale Android app. After logging into the system, an attacker can modify the amount of payment arbitrarily by clicking on the "Alipay Payment Credit Deposit" option and intercepting it...

Logic Design Vulnerability in EasyCMS Frontend

EasyCMS is lightweight scalable open source content management program, following the Apache2 open source agreement. A logical design vulnerability exists in the frontend of EasyCMS. Attackers can log into the user center and modify other people's mailboxes and data by intercepting and modifying...

Shinex Mobile App Has Logic Design Flaws

Credit Ease Mobile App is a software that helps credit managers to work efficiently. There is a logical design vulnerability in Xinyik Mobile APP. An attacker can log into any account system by capturing packets and bursting the verification code...

Appointment app has logic design flaws

Covenant App is an application that offers to sell your time and skills to earn money. There is a logical design loophole in Dating App that allows attackers to register any user and reset user passwords by grabbing packets and modifying cell phone numbers...

Flower Han App Has Logic Design Flaws

Flower Han is a cosmetic surgery and beauty community app. There is a logical design vulnerability in the Flower Han app that allows an attacker to register any user and reset a user's password by grabbing packets and modifying a cell phone number...

Logic design flaws in Jia Yi Chong App

Jia Yi Charge App is a mobile application for city charging pile information inquiry and use. There is a logical design vulnerability in JiaYiCharge App, which allows an attacker to register any user and reset any user's password by grabbing packets and modifying the cell phone number...