VYPR

Disclosures

by Spaceraccoon

Source repositories

CVEs (2)

  • CVE-2025-50503HigAug 20, 2025
    risk 0.57cvss 8.8epss 0.00

    A vulnerability in the password reset workflow of the Touch Lebanon Mobile App 2.20.2 allows an attacker to bypass the OTP reset password mechanism. By manipulating the reset process, an unauthorized user may be able to reset the password and gain access to the account without…

  • CVE-2026-26461MedMay 1, 2026
    risk 0.36cvss 6.5epss 0.01

    A Command Injection vulnerability in the web management interface in Aver PTC320UV2 0.1.0000.65 allows an unauthenticated attacker to execute arbitrary commands via a crafted web request.