CVE-2021-27700

SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify user, delete user, etc...

CVE-2021-27701

SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery CSRF via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add/Modify any random user data by sending a crafted CSRF request...

CVE-2021-27700

SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify user, delete user, etc...

CVE-2021-27701

SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery CSRF via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add/Modify any random user data by sending a crafted CSRF request...

CVE-2021-27701

SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery CSRF via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add/Modify any random user data by sending a crafted CSRF request...

SOCIFI Guest wifi 安全漏洞

SOCIFI Guest wifi is a web portal of SOCIFI UK. A security vulnerability exists in SOCIFI Guest wifi. An attacker exploiting this vulnerability could switch to another guest dashboard and perform actions such as modifying users, deleting users, etc...

CVE-2021-27700

SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify user, delete user, etc...

CVE-2021-27700

CVE-2021-27700 concerns the SOCIFI Guest wifi as SAAS portal, where insecure permissions allow any authorized customer in partner mode to switch to another customer dashboard and perform actions such as modifying or deleting users. CVSSv3.1 metrics indicate a Network attack vector, Low attack com...

CVE-2021-27701

SOCIFI Socifi Guest wifi as SAAS is affected by Cross Site Request Forgery CSRF via the Socifi wifi portal. The application does not contain a CSRF token and request validation. An attacker can Add/Modify any random user data by sending a crafted CSRF request...

CVE-2021-27701

The CVE-2021-27701 entry concerns SOCIFI Guest WiFi as a SAAS web portal affected by Cross-Site Request Forgery (CSRF). The underlying issue is the absence of a CSRF token and request validation, enabling an attacker to Add/Modify arbitrary user data via crafted CSRF requests. Public documents co...

CVE-2021-27700

SOCIFI Socifi Guest wifi as SAAS wifi portal is affected by Insecure Permissions. Any authorized customer with partner mode can switch to another customer dashboard and perform actions like modify user, delete user, etc...

PT-2024-10907 · Unknown · Socifi Guest Wifi

Name of the Vulnerable Software and Affected Versions: Socifi Guest wifi as SAAS affected versions not specified Description: The issue concerns a Cross Site Request Forgery CSRF vulnerability via the Socifi wifi portal. The application lacks a CSRF token and request validation, allowing an...

SOCIFI Guest wifi 安全漏洞

SOCIFI Guest wifi is a web portal of SOCIFI UK. A security vulnerability exists in SOCIFI Guest wifi. An attacker exploiting this vulnerability could add or modify any random user data by sending a specially crafted cross-site request forgery request...