Advisories

Publicly disclosed vulnerabilities discovered by Fluid Attacks Research Team.

Severity 6.3

Session 1.13.0 - Improper Access Control (Fingerprint)

CVE-2022-1955

Published: 2022-06-28 08:00 COT

Discovered by Carlos Bello

Severity 6.1

Keep My Notes 1.80.147 - Improper Access Control

CVE-2022-1716

Published: 2022-06-01 20:30 COT

Discovered by Carlos Bello

Severity 7.1

Proton v0.2.0 - XSS To RCE

CVE-2022-25224

Published: 2022-04-29 10:00 COT

Discovered by Oscar Uribe

Severity 7.7

Popcorn Time 0.4.7 - XSS to RCE

CVE-2022-25229

Published: 2022-04-28 10:00 COT

Discovered by Oscar Uribe

Severity 6.3

CandidATS 3.0.0 - Authenticated SQL Injection

CVE-2022-25228

Published: 2022-04-20 10:00 COT

Discovered by Oscar Uribe

Severity 8.3

Thinfinity VNC v4.0.0.1 - CORS Misconfiguration to RCE

CVE-2022-25227

Published: 2022-04-11 11:00 COT

Discovered by Oscar Uribe

Severity 10

ThinVNC 1.0b1 - Authentication Bypass

CVE-2022-25226

Published: 2022-04-06 10:00 COT

Discovered by Oscar Uribe

Severity 7.5

Money Transfer Management System 1.0 - Unauthenticated SQLi

CVE-2022-25222

Published: 2022-03-15 12:00 COT

Discovered by Oscar Uribe

Severity 4.3

Money Transfer Management System 1.0 - DOM-Based XSS

CVE-2022-25221

Published: 2022-03-15 12:00 COT

Discovered by Oscar Uribe

For more information, you can read our Disclosure Policy