Vulnerability CVE-2021-28174


Published: 2021-04-08

Description:
Mitake smart stock selection system contains a broken authentication vulnerability. By manipulating the parameters in the URL, remote attackers can gain the privileged permissions to access transaction record, and fraudulent trading without login.

 References:
https://www.twcert.org.tw/tw/cp-132-4625-4ccc6-1.html

Copyright 2021, cxsecurity.com

 

Back to Top