3 matches found
Missing Authorization
Overview Affected versions of this package are vulnerable to Missing Authorization via the nnef-callback route group, which lacks inbound authentication and authorization checks. An attacker can access sensitive business logic and potentially manipulate subscription state by submitting forged...
Use of block.timestamp
Lines of code Vulnerability details Impact Block timestamps have a purpose for a variety of applications, such as entropy for random numbers see the Entropy Illusion for further details, locking funds for periods of time, and various state-changing conditional statements that are time-dependent...
Cohu 3960HD Information Disclosure Vulnerability (CNVD-2017-37750)
The Cohu 3960HD is an IP zoom camera from Cohu USA that is typically used as a traffic camera. An information disclosure vulnerability exists in the Cohu 3960HD. The vulnerability can be exploited by an attacker to view sensitive information e.g., logic between an application and a web browser wi...