6 matches found
CVE-2024-50689
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references IDOR via the orgService API model...
CVE-2024-50686
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references IDOR via the commonService API model...
CVE-2024-50689
SunGrow iSolarCloud before the October 31, 2024 remediation is vulnerable to insecure direct object references IDOR via the orgService API model...
CVE-2024-50689
SunGrow iSolarCloud vulnerability (CVE-2024-50689) affects the Android app and cloud API. The issue is insecure direct object references (IDOR) via the orgService API model, potentially allowing unauthorized access to user data and modification of identifying data values. The CVE entry notes reme...
CVE-2024-50685
SunGrow iSolarCloud is vulnerable to insecure direct object references (IDOR) in the powerStationService API model, affecting the iSolarCloud Android app and related cloud services. The root cause is IDOR flaws that could allow unauthorized access to user data and potentially modify key identifyi...
i-doit SQL注入漏洞
i-doit is a configuration management database software from i-doit Inc. An SQL injection vulnerability exists in i-doit that originates from an information disclosure vulnerability contained in the ID parameter in isysapimodelcmdbobjectsbyrelation.class.php...