VYPR

sisqualWFM

by SisqualWFM

CVEs (1)

  • CVE-2023-36085MedOct 25, 2023
    risk 0.40cvss 6.1epss 0.01

    The sisqualWFM 7.1.319.103 thru 7.1.319.111 for Android, has a host header injection vulnerability in its "/sisqualIdentityServer/core/" endpoint. By modifying the HTTP Host header, an attacker can change webpage links and even redirect users to arbitrary or malicious locations.…