2 matches found
CVE-2021-25647
CVE-2021-25647 affects the mobile application “Testes de Codigo” up to version v11.3. The issue is a stored XSS in the feedback message field: payloads are stored in the remote database and later executed on client devices when loading the feedback list (via website or app). The available connect...
CVE-2021-25648
CVE-2021-25648 affects the mobile app Testes de Codigo (versions 11.4 and prior). The issue allows an attacker to gain access to the administrative interface and premium features by tampering the Boolean flags isAdmin and isPremium stored on the device, effectively enabling privilege escalation w...