CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-47369
https://notcve.org/view.php?id=CVE-2023-47369
The leakage of channel access token in best_training_member Line 13.6.1 allows remote attackers to send malicious notifications. La fuga del token de acceso al canal en best_training_member Line 13.6.1 permite a atacantes remotos enviar notificaciones maliciosas. • https://github.com/syz913/CVE-reports/blob/main/best_training_member.md • CWE-326: Inadequate Encryption Strength •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-47370
https://notcve.org/view.php?id=CVE-2023-47370
The leakage of channel access token in bluetrick Line 13.6.1 allows remote attackers to send malicious notifications to victims. La fuga del token de acceso al canal en bluetrick Line 13.6.1 permite a atacantes remotos enviar notificaciones maliciosas a las víctimas. • https://github.com/syz913/CVE-reports/blob/main/bluetrick.md • CWE-326: Inadequate Encryption Strength •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-47372
https://notcve.org/view.php?id=CVE-2023-47372
The leakage of channel access token in UPDATESALON C-LOUNGE Line 13.6.1 allows remote attackers to send malicious notifications to victims. La fuga del token de acceso al canal en UPDATESALON C-LOUNGE Line 13.6.1 permite a atacantes remotos enviar notificaciones maliciosas a las víctimas. • https://github.com/syz913/CVE-reports/blob/main/UPDATESALON%20C-LOUNGE.md • CWE-326: Inadequate Encryption Strength •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-47373
https://notcve.org/view.php?id=CVE-2023-47373
The leakage of channel access token in DRAGON FAMILY Line 13.6.1 allows remote attackers to send malicious notifications to victims. La fuga del token de acceso al canal en DRAGON FAMILY Line 13.6.1 permite a atacantes remotos enviar notificaciones maliciosas a las víctimas. • https://github.com/syz913/CVE-reports/blob/main/DRAGON%20FAMILY.md • CWE-326: Inadequate Encryption Strength •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-38849
https://notcve.org/view.php?id=CVE-2023-38849
An issue in tire-sales Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request. Un problema en Tire-Sales Line v.13.6.1 permite a un atacante remoto obtener información confidencial a través de una solicitud GET manipulada. • https://github.com/syz913/CVE-reports/blob/main/CVE-2023-38849.md https://liff.line.me/1657203739-yvGg5PjN • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •