CVE-2021-38095

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request...

CVE-2021-38095

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request...

CVE-2021-38095

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request...

Cross site request forgery (csrf)

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request...

CVE-2021-38095

The CVE-2021-38095 entry affects Planview Spigit 4.5.3, where the REST API allows remote unauthenticated attackers to query sensitive user account data via api/v1/users/1. This is an unauthenticated access vulnerability exposing user data (high impact per CVSS 3.1). The Connected documents confir...

CVE-2021-38095

The REST API in Planview Spigit 4.5.3 allows remote unauthenticated attackers to query sensitive user accounts data, as demonstrated by an api/v1/users/1 request...

Planview Spigit 安全漏洞

Planview Spigit is an innovative management software from Planview USA. A security vulnerability exists in Planview Spigit 4.5.3 in which a REST API allows a remote, unauthenticated attacker to query sensitive user account data...