9 matches found
CVE-2024-54880
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to register accounts in bulk...
CVE-2021-20735
Cross-site scripting vulnerability in ETUNA EC-CUBE plugins Delivery slip number plugin 3.0 series 1.0.10 and earlier, Delivery slip number csv bulk registration plugin 3.0 series 1.0.8 and earlier, and Delivery slip number mail plugin 3.0 series 1.0.8 and earlier allows remote attackers to injec...
CVE-2024-54880
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to register accounts in bulk...
JVN#79254445: Multiple ETUNA EC-CUBE plugins vulnerable to cross-site scripting
Multiple EC-CUBE plugins provided by ETUNA contain a cross-site scripting vulnerability CWE-79. An arbitrary script may be executed by executing a specific operation on the management page of EC-CUBE. As of 2021 June 15, an attack exploting this vulnerability has been observed in the wild. Impact...
HEYI Intelligent Alarm System Android APP has malicious bulk registration vulnerability
HEYI Smart Alarm System Android APP is a smart alarm APP that integrates security class monitoring, firmware upgrade, smart extension and so on. HEYI Smart Alarm System Android APP has a malicious bulk registration vulnerability, attackers can bulk register accounts by grabbing packet data to...
Malicious Bulk Registration Vulnerability in Bodivis Android APP of Tongfang Co.
The bodivis Android App is a healthy life management app for use with the bodivis Health Scale and Exercise Bracelet. There is a malicious bulk registration vulnerability in the bodivis Android APP of Tongfang Co. Attackers can bypass the authentication code and register accounts in bulk by...
Hongyi Environmental Protection Android App Has Logic Design Flaws
Hongyi Environmental Android APP is an air purifier management tool. There is a logical design vulnerability in the Android APP of Hongyi Environmental Protection. Because the program fails to verify the verification code when performing registration, an attacker can bypass the verification code ...
Aier Eye Group's Eye Neighborhood Doctor's Edition App for Android Has Logic Design Flaws
Eye Neighborhood Doctor Edition App is an application designed and developed for ophthalmologists and ophthalmology practitioners. The Android version of Eye Neighborhood Doctor Edition APP of Aier Ophthalmology Group has a logic design vulnerability, which allows attackers to successfully regist...
Logic design flaws in the Android version of Eye Neighborhood App of Aire Eye Group
Eye Neighborhood APP is an all-round eye health management application, which monitors your eye health anytime and anywhere, consults with professional ophthalmologists online, and connects with offline eye health medical products to provide users with professional checkups and treatment services...