45 matches found
CVE-2026-22077
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
CVE-2026-22077
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
CVE-2026-22077 Sensitive Information Disclosure Vulnerability Caused by Trusted Domain Bypass in OPPO Wallet
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
CVE-2026-22077
CVE-2026-22077 affects OPPO Wallet. A trusted-domain validation flaw enables bypass of protected interface access, which can lead to account token hijacking and sensitive information disclosure. The CVSS 4.0 vector indicates local attack vector, high confidentiality impact, and no user interactio...
CVE-2026-22077 Sensitive Information Disclosure Vulnerability Caused by Trusted Domain Bypass in OPPO Wallet
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
CVE-2026-22077
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
EUVD-2026-25784
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
OPPO Wallet 访问控制错误漏洞
OPPO Wallet is a mobile wallet application developed by OPPO Corporation in China. It integrates payment, card and coupon management, as well as digital lifestyle services. OPPO Wallet has a access control vulnerability, which stems from a trust domain verification flaw. This vulnerability could...
PT-2026-35363
OPPO Wallet APP contains a trusted domain validation flaw that allows attackers to bypass protected interface access restrictions, which may lead to account token hijacking and sensitive information disclosure...
PT-2026-25887
Apache Airflow versions 3.1.0 through 3.1.7 session token token in cookies is set to path=/ regardless of the configured webserver base url or api base url. This allows any application co-hosted under the same domain to capture valid Airflow session tokens from HTTP request headers, allowing full...
📄 Appsmith 1.92 Origin Header Injection
A critical vulnerability in Appsmith version 1.92 allows an unauthenticated attacker to manipulate the Origin HTTP header during the password reset process. Due to improper trust in client‑supplied headers, Appsmith constructs password reset links based on the injected origin. This enables an...
CVE-2025-64386
The equipment grants a JWT token for each connection in the timeline, but during an active valid session, a hijacking of the token can be done. This will allow an attacker with the token modify parameters of security, access or even steal the session without the legitimate and active session...
CVE-2025-64386 HIJACKING OF THE TOKEN AND GAINING ACCESS
The equipment grants a JWT token for each connection in the timeline, but during an active valid session, a hijacking of the token can be done. This will allow an attacker with the token modify parameters of security, access or even steal the session without the legitimate and active session...
EUVD-2018-2948
Malware in sbrugna...
EUVD-2019-2058
Malware in sbrugna...
EUVD-2022-29052
Malicious code in bioql PyPI...
CVE-2019-1020010
Misskey before 10.102.4 allows hijacking a user's token...
CVE-2024-1610 OPPO Store app include remote account token hijacking and sensitive information leakage
In OPPO Store APP, there's a possible escalation of privilege due to improper input validation...
CVE-2024-1610
The vulnerability CVE-2024-1610 affects the OPPO Store App. Connected PT-2024-18170 documents indicate the issue is an escalation of privilege due to improper input validation, specifically impacting OPPO Store App version 4.32.1. Root cause: improper input validation that could allow higher acce...
CVE-2023-31238
A vulnerability has been identified in SICAM P850 7KG8500-0AA00-0AA0 All versions V3.11, SICAM P850 7KG8500-0AA00-2AA0 All versions V3.11, SICAM P850 7KG8500-0AA10-0AA0 All versions V3.11, SICAM P850 7KG8500-0AA10-2AA0 All versions V3.11, SICAM P850 7KG8500-0AA30-0AA0 All versions V3.11, SICAM P8...