29 matches found
CVE-2024-7697
Logical vulnerability in the mobile application com.transsion.carlcare may lead to user information leakage risks...
CVE-2024-7697
Logical vulnerability in the mobile application com.transsion.carlcare may lead to user information leakage risks...
CVE-2024-7697 Logical vulnerability in com.transsion.carlcare
Logical vulnerability in the mobile application com.transsion.carlcare may lead to user information leakage risks...
CVE-2024-7697
CVE-2024-7697 affects the mobile app com.transsion.carlcare and is described as a logical vulnerability that may lead to user information leakage. CVSS v3.1 base score 7.5 (HIGH) with Network attack vector, Low attack complexity, no privileges, no user interaction required. The connected document...
CVE-2024-7697 Logical vulnerability in com.transsion.carlcare
Logical vulnerability in the mobile application com.transsion.carlcare may lead to user information leakage risks...
PT-2024-38517
Name of the Vulnerable Software and Affected Versions Transsion Carlcare App affected versions not specified Description A logical vulnerability in the Transsion Carlcare mobile application may lead to user information leakage risks. Recommendations At the moment, there is no information about a...
Logic Vulnerabilities in the New Business Warfare Sandbox System of Xindao Technology Co.
New Way Technology Co., Ltd. is an enterprise management software and enterprise Internet service provider. A logic vulnerability exists in the Xindao New Business Warfare Sandbox system of Xindao Technology Co. Ltd. that can be exploited by attackers to obtain sensitive information...
Logic Vulnerabilities in the Lock Group Management System of Jiangsu Esso Electronic Technology Co.
Ltd. is specialized in substation video monitoring system, passive intelligent lock group management system development, power intelligent auxiliary monitoring system, distribution room monitoring system, intelligent access control system, production and sales of high-tech enterprises. Ltd. lock...
蜂网互联企业级路由器逻辑漏洞
...
The macro perspective of the office vulnerability, 2010-2018-a vulnerability warning-the black bar safety net
This article is for me at Bluehat Shanghai 2019 presentation of an extended summary. In this article, I will summarize the 2010 to 2018 years of Office-related 0day/1day vulnerability. I will be for each type of vulnerability do once carded, and for each vulnerability related to the analysis of t...
YxtCMF the latest version of a logical vulnerability
No description provided by source...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2016. Notes: none...
Get the passenger and the owner of the personal information? This note Uber logical vulnerability“combination punches”worth a look-vulnerability warning-the black bar safety net
! Uber recently finally opened up its vulnerability reward program, and encourage white-hat gate expand on the Uber online service vulnerability mining. Please with FreeBuf xiaobian together look at this a few logical loopholes the formation of“combination of Boxing” it. Information collected...
Mail.ru: Logical Vulnerability : REDIRECTING on pw.mail.ru by Parameter Spoofing
Hi Mail.ru, I was surfing in your website and i was trying to find a Reflected Cross-site Scripting Vulnerability , So i was trying to find a way to inject my payload in a LINK . While Surfing i've found this link : https://pw.mail.ru/validate/index.html?refurl=pw.mail.ru Screenshot :...
KesionIMalv2.5逻辑漏洞(DEMO演示)
简要描述: RT 详细说明: demo地址:http://imall.kesion.com 修改购物车内商品数量时,抓包修改为-1,提交订单后,点击支付,该订单直接支付成功。 ht...
IdeaCMS built Station system universal vulnerability affects thousands of sites-vulnerability warning-the black bar safety net
IdeaCMS based on the ASP+MSSQL/ACCESS technology development from 2 0 0 8 released in the first version since, every year, we are on a program to do a larger version of the update, so far has released six major versions. IdeaCMS in a simple, efficient, flexible, easy to use, open source, template...
White hat found YouTube any video remove the vulnerability, the Google award 5 0 0 0 $ -bug-warning-the black bar safety net
Russian security researcher Kamil Hismatullin recently found YouTube there is a logical vulnerability by the vulnerability, users can delete the YouTube of any video. In the vulnerabilities submitted to the official after Hismatullin get Google 5 0 0 0 $ bonus. FreeBuf science: a Google...
Cock wire from scratch-micro-shoot APP vulnerability-vulnerability warning-the black bar safety net
Micro-shot, is the mobile Internet the most popular mobile video social APP, has a unique whitening Skin Beauty and other video effects in iPhone and Android Phones the App Store social category and the photography category of the APP list are among the best in Beijing grasshopper online Technolo...
CVE-2 0 1 4-4 1 1 4 sample analysis-vulnerability warning-the black bar safety net
Author: Nie. Meining posted on: 2014-10-17 2 0:5 8 classification: Debug Analysis a bit in these two days compared to the fire of the CVE-2 0 1 4-4 1 1 4, sample upload analysis platform immediately Alarm: ! CVE-2014-41140.jpg Detailed analysis of the results: to Oddly enough captures the excepti...
X (Formerly Twitter): Delete Credit Cards from any Twitter Account in ads.twitter.com [New Vulnerability]
i've found a new critical logical vulnerability that allow deleteing credit card of any twitter account in ads.twitter.com , the vulnerability affects the Dismiss functionality of credit cards in payments methods section the vulnerability is similair to the one i've reported earlier h1 report 272...