9 matches found
ui-lib Stocky 安全漏洞
ui-lib Stocky is a human resource management system from ui-lib Bangladesh. A security vulnerability exists in ui-lib Stocky version 5.0, which stems from insufficient product name parameter cleanup and escaping, and could lead to a stored cross-site scripting attack...
Shopify: A non-privileged user may create an admin account in Stocky
Summary: A non-privileged Stocky user created within Stocky may be able to create a new admin user. Steps to reproduce: 1.Create a non-privileged user in Stocky, don't give admin privileges to that user. 2.Login with the non-privileged user and go to https://stocky.shopifyapps.com/users/me, updat...
Shopify: Open Redirect on Login Page of Stocky App
Vulnerable app is Stocky, 1. Visit login page of app with vulnerable parameter & malicious website address?returnto=//evil.com like https://stocky.shopifyapps.com/users/login?returnto=//evil.com 2. Then login to account 3. Open Redirect is executed PoC Video: F1172071 Impact Open Redirect...
Shopify: Stocky App Administrator can create a backdoor admin account by using an existing POS User
Details The Stocky App has POS Users that are being created once a POS Staff logs in into the application from the Point Of Sale application on a mobile device. From the users management page located at https://stocky.shopifyapps.com/users there's no visible way to edit those POS users. Although,...
Shopify: Password reset link not expired at Stocky App
You can use password reset link to reset password multiple times. Steps: 1. Go to https://stocky.shopifyapps.com/users/forgottenpassword and Send the password reset link to your email. if this page doesn't appear you should add login details via this https://stocky.shopifyapps.com/preferences/use...
Shopify: IDOR on stocky application-Low Stock-Varient-Settings-Columns
Hello, I have found a IDOR on stocky application Low Stock-Varient-Settings-Columns attribute, in fact malicious user can change the columns of another user. POC: 1Create two user A and B, login to A and create a store, test.myshopify.com login to user B and create a store test1.myshopify.com...
Shopify: user with no draft order permission can still perform action on draft order's in stocky app (idor)
@imranhudaa reported that the Shopify Stocky application was missing a permission check to download purchase orders. We implemented the missing check to resolve the issue. This is a limited disclosure at their request...
Shopify: Disclose Any Store products, Files, Purchase Orders Via Email through Shopify Stocky APP
Hello Shopify Security Team! Bug Summary: This bug leads to disclose any store products, files, purchase orders through shopify stocky app. It is bug in shopify app but it effects stores also. Reproduction steps: Go to apps.shopify.com and install the stocky app. Now you will be redirected to thi...
Shopify: Shopify Stocky App OAuth Misconfiguration
@vulnh0lic noticed that a staff member without Apps permission was able to access the Stocky app. We determined that this was because of a bug in Stocky's OAuth authentication code, which allowed the user to be granted access to Stocky at the start of the OAuth process rather than the end. This...