3 matches found
CVE-2016-1562
The CVE-2016-1562 issue affects the DTE Energy Insight Android app’s REST API prior to version 1.7.8. An authenticated remote user could obtain limited customer data by manipulating a SQL expression in the filter parameter. The root cause is exposure via the filter parameter in the REST API, lead...
DTE Energy Insight app vulnerable to information exposure
Overview The DTE Energy Insight app API allows an authenticated user to obtain and query certain limited customer information from other customers. Description CWE-200: Information Exposure- CVE-2016-1562The DTE Energy Insight app lets DTE Energy customers track their energy usage. This informati...
WordPress 'theme' Parameter Cross Site Scripting Vulnerability (Jan 2016) - Linux
WordPress is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...