3 matches found
CVE-2022-36247
Shop Beat Solutions Pty LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to IDOR via controlpanel.shopbeat.co.za...
CVE-2022-36244
Shop Beat Media Player (versions 2.5.95–3.2.57) is affected by multiple stored Cross-Site Scripting (XSS) vulnerabilities in the Shop Beat Control Panel (URLs: www.shopbeat.co.za, controlpanel.shopbeat.co.za). The root cause is stored XSS in the control panel exposed to user input; impact include...
CVE-2022-36247
Shop Beat Media Player versions 2.5.95–3.2.57 are vulnerable to an Insecure Direct Object Reference (IDOR) via controlpanel.shopbeat.co.za. The root cause is IDOR, leading to unauthorized access to resources; CVSS 3.1 indicates high confidentiality and integrity impact (score 9.1). No patch/versi...