6 matches found
CVE-2022-35136
Boodskap IoT Platform v4.4.9-02 allows attackers to make unauthenticated API requests...
CVE-2022-35135
Boodskap IoT Platform v4.4.9-02 allows attackers to escalate privileges via a crafted request sent to /api/user/upsert/...
CVE-2022-35134
Boodskap IoT Platform v4.4.9-02 contains a cross-site scripting XSS vulnerability...
Boodskap IoT Platform 授权问题漏洞
Boodskap IoT Platform is an IoT platform from Boodskap. A security vulnerability exists in Boodskap IoT Platform version v4.4.9-02, which can be exploited by an attacker to elevate privileges via a crafted request sent to the...
Boodskap IoT Platform 跨站脚本漏洞
Boodskap IoT Platform is an IoT platform from Boodskap, Inc. A security vulnerability exists in Boodskap IoT Platform version v4.4.9-02 that stems from its application not enforcing input validation and output cleanup across multiple functions resulting in multiple cross-site scripts...
PT-2022-22593 · Unknown · Boodskap Iot Platform
Name of the Vulnerable Software and Affected Versions: Boodskap IoT Platform version 4.4.9-02 Description: The issue allows attackers to escalate privileges via a crafted request sent to the "/api/user/upsert/" API endpoint. Recommendations: For Boodskap IoT Platform version 4.4.9-02, as a...