Dataease SQLBot 数据伪造问题漏洞

Dataease SQLBot is a robot plugin developed by Dataease as open source. Versions of Dataease SQLBot 1.5.1 and earlier contained a data manipulation vulnerability. This vulnerability stemmed from improper verification of the encrypted signature for the validateEmbedded function in the JWT Token...

CVE-2025-11645

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

CVE-2025-11645

A security vulnerability has been detected in Tomofun Furbo Mobile App up to 7.57.0a on Android. This affects an unknown part of the component Authentication Token Handler. The manipulation leads to insecure storage of sensitive information. It is possible to launch the attack on the physical...

CVE-2025-11645

CVE-2025-11645 (Tomofun Furbo Mobile App) affects Android versions up to 7.57.0a, arising from insecure storage in the Authentication Token Handler. The issue may allow information disclosure on a physical device; the exploit has been publicly disclosed. Multiple connected sources (including PT-2...

The vulnerability of the Authentication Token Handler component in the IntelliJ IDEA integrated development environment allows a attacker to send the authentication token to any arbitrary URL.

The vulnerability of the Authentication Token Handler component in the IntelliJ IDEA integrated development environment exists due to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to send authentication tokens to any specified URL...