"CVE-2022-24188: OurPhoto App 1.4.1 /device/signin Discloses Clear-Text Password Information, Leaves Devices Vulnerable to Attacks"
Ourphoto App 1.4.1, a popular application used to manage picture frame devices, was found to contain a significant security vulnerability: CVE-2022-24188. This vulnerability
CVE-2022-24190: Ourphoto App Security Flaw in Binding Process Allows Unauthorized Access to Users' Photo Frames
A recently discovered security vulnerability, CVE-2022-24190, found in Ourphoto App version 1.4.1 allows potential attackers to bind their account to any user'
CVE-2022-24189: User Token Authorization Bypass in Ourphoto App v1.4.1 Allows Unauthorized Access to Sensitive User Data
An improper implementation of the user_token authorization header on the Ourphoto App version 1.4.1 /apiv1/* end-points has been discovered, leaving users exposed
CVE-2022-24187 – Insecure Direct Object Reference Vulnerabilities in Ourphoto App, User_id and Device_id Exposed in version 1.4.1
Recently, a security vulnerability has been discovered in Ourphoto App version 1.4.1 that encompasses insecure direct object reference vulnerabilities in /device/* end-points. This
Episode
00:00:00
00:00:00