One Call Doctor APP has arbitrary account password retrieval vulnerability

The One Call Doctor App is an app for the doctor community that focuses on helping people with quick and easy consultations after a consultation. There is an arbitrary account password retrieval vulnerability in One Call Doctor APP. The vulnerability is due to the server did not do accurate...

Meal Chain App Has Multiple Vulnerabilities

Meal Chain APP is an ingredient sourcing platform focusing on the restaurant industry. There are arbitrary user registration and arbitrary password reset vulnerabilities in Meal Chain APP. An attacker can register any account and reset any password by capturing the verification code...

Multiple Vulnerabilities in Ease of Use Electric Vehicle App

Ease of use electric car APP is an electric car service software. There is an arbitrary user registration and arbitrary user password reset vulnerability in the E-Hang Electric Vehicle APP. An attacker can register any account and reset any password by obtaining the verification code by default...

Logic design flaws in Efon Travel App

Easy Beacon Mobility APP is an electric car time-share rental software. There is a logic design vulnerability in Efeng Travel APP. An attacker can register any account and reset any password by capturing the verification code...

Shanghai HOLLOW Investment Management Co., Ltd APP - HOLLOW Financial has arbitrary number login vulnerability

HOLLOW FINANCE APP is an investment and financing mobile app. Shanghai HaoLu Investment Management Co. HaoLu Financial APP has an arbitrary number login vulnerability, the vulnerability is due to the program failed to limit the number of times the verification code is sent and the valid time. An...

Hangzhou Hechat Technology Co., Ltd. and Hechat APP suffers from arbitrary number registration and arbitrary password reset vulnerability

Wochat App is a business socialization software. Ltd. and Chat APP has an arbitrary number registration and arbitrary password reset vulnerability. The vulnerability is due to the lack of restrictions on verification code verification, an attacker can register any account and reset any password b...

Beijing Angdao Network Technology Co., Ltd. money clip APP exists arbitrary account registration vulnerability

Money Clip APP is developed and launched by Beijing Angdao Network Technology Co. Ltd. There is an arbitrary account registration vulnerability in Money Clip APP. The vulnerability is due to the registration account, verification code verification failed to verify the number of times and time to ...

Hefei Yingyun Information Technology Co., Ltd. ordering good APP there is a verification code leakage vulnerability

OrderGood APP is an omni-channel order platform, distribution platform APP. There is a verification code leakage vulnerability in the Ordering Good APP of Hefei Yingyun Information Technology Co. Attackers can log into other user accounts by grabbing packets to get the verification code...

Shanghai Lehigh Network Technology Co., Ltd. bug house APP has multiple vulnerabilities

Bug House App is a home service software. Shanghai Lehigh Network Technology Co., Ltd Bug House APP exists arbitrary user registration and arbitrary user password reset vulnerability. Attackers can register any account and reset any password by grabbing packets and blasting the verification code...

Hangzhou Chengyu Asset Management Co. Smart Money APP has logic design flaws

Smart Money APP is an online smart investment management app developed by Hangzhou Chengyu Asset Management Co. There is a logical design flaw in the "password retrieval" section of the Smart Money APP of Hangzhou Chengyu Asset Management Co. Attackers through unlimited verification code...

Verification code leakage vulnerability in the dear APP of Nanjing UAF Network Technology Co.

Dear App is a mobile couple social software. Nanjing UAF Network Technology Co. Dear APP has a verification code leakage vulnerability, which allows an attacker to use any number to register, leading to account abuse and consumption of service resources...

Arbitrary User Registration and Arbitrary User Password Reset Vulnerabilities in Loan Plus Plus App

Loan Plus Plus App is a loan software platform. The Loan Plus Plus APP is vulnerable to arbitrary user registration and arbitrary user password reset. An attacker can register any user and reset any password by capturing the verification code in a packet...

Nanjing Wedding Information Technology Co., Ltd. wedding music APP has information leakage vulnerability

Wedding Fun APP is a one-stop wedding butler service platform that focuses on saving money on weddings. There is an information leakage vulnerability in Nanjing Wedding Information Technology Company Limited's Marriage Music APP. The vulnerability is due to the server returning verification code...

TeleShadow v2 - Advanced Telegram Desktop Session Hijacker!

Advanced Telegram Desktop Session Hijacker! Stealing desktop telegrams has never been so easy ! Set the email and sender details of the sender and recipient and send it to the victim after compiling. How do I use the session file? Delete everything inside folder at...

loveU dating app has SMS bombing vulnerability

loveU Matchmaking Dating APP is a real-name matchmaking dating software. There is an SMS bombing vulnerability in loveU dating APP. An attacker can exploit the vulnerability to replay the packets sending verification code without limitation and bombard the client with SMS...

Shinex Mobile App Has Logic Design Flaws

Credit Ease Mobile App is a software that helps credit managers to work efficiently. There is a logical design vulnerability in Xinyik Mobile APP. An attacker can log into any account system by capturing packets and bursting the verification code...

Logic design flaws in FeeControl Mobile App

FeeControl Mobile App is a mobile bookkeeping office software. There is a logical design vulnerability in FeeControl Mobile APP. An attacker can log into any account by grabbing packets and blasting the verification code...

Arbitrary Account Password Reset Vulnerability in Goodbody Knowledge Android APP of Tongfang Co.

Good Body Knowledge Android App is a software to detect the health data in your body. An arbitrary account password reset vulnerability exists in the Good Body Knowledge Android APP of Tongfang Co. An attacker can reset any account password by grabbing a packet to obtain a verification code throu...

True Luck Driver Mobile App Has Logic Design Flaws

True Luck Driver Mobile App is a mobile application that helps truck drivers find work. There is a logical design vulnerability in the True Luck Driver mobile app. An attacker can log into any user account by using the forget password function to capture packet blasting to obtain the verification...

Yikang to Home Android APP has arbitrary cell phone number login vulnerability

Yikang to Home Android APP is mobile online pharmacy shopping software. There is an arbitrary cell phone number login vulnerability in Yikang to Home Android APP. An attacker can log in to any account by capturing a packet and obtaining a verification code...