PT-2024-34704 · Wave 2.0 · Wave 2.0

Name of the Vulnerable Software and Affected Versions: Wave 2.0 Description: This issue is caused by improper exception handling for invalid inputs at a certain API endpoint. An authenticated remote attacker could exploit this by providing invalid inputs for the userId parameter in the API reques...

Brokerage Wave 安全漏洞

Brokerage Wave is a frontend product from Brokerage, Inc. A security vulnerability exists in Brokerage Wave version 2.0, which stems from an exception mishandling of invalid inputs by an API endpoint, which allows an attacker to generate an error message containing sensitive information about the...