Central Dogma versions prior to 0.64.1 is vulnerable to Cross-Site Scripting (XSS), which could allow for the leakage of user sessions and subsequent authentication bypass.
Max CVSS
9.3
EPSS Score
0.05%
Published
2024-02-02
Updated
2024-02-09
An issue in mimasaka_farm mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
nagayama_copabowl Line 13.6.1 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor.
Max CVSS
7.5
EPSS Score
0.08%
Published
2023-11-16
Updated
2023-11-22
An issue in angel coffee mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in kosei entertainment esportsstudioLegends mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in CHIGASAKI BAKERY mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in GINZA CAFE mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in kimono-oldnew mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in UNITED BOXING GYM mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in myGAKUYA mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
An issue in Luxe Beauty Clinic mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-26
Updated
2024-01-29
The leakage of channel access token in DRAGON FAMILY Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in UPDATESALON C-LOUNGE Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in bluetrick Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in best_training_member Line 13.6.1 allows remote attackers to send malicious notifications.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in taketorinoyu Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in platinum clinic Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in craft_members Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-11-20
The leakage of channel access token in Lil.OFF-PRICE STORE Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-12-28
The leakage of channel access token in nagaoka taxi Line 13.6.1 allows remote attackers to send malicious notifications to victims
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-12-28
The leakage of channel access token in F.B.P members Line 13.6.1 allows remote attackers to send malicious notifications to victims.
Max CVSS
6.5
EPSS Score
0.08%
Published
2023-11-09
Updated
2023-12-28
An issue in A-WORLD OIRASE BEER_waiting Line v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
Max CVSS
5.3
EPSS Score
0.05%
Published
2024-01-02
Updated
2024-01-08
An issue in Tamaki_hamanoki Line v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
Max CVSS
8.2
EPSS Score
0.08%
Published
2024-01-03
Updated
2024-01-10

CVE-2023-44487

Known exploited
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Max CVSS
7.5
EPSS Score
70.59%
Published
2023-10-10
Updated
2024-02-02
CISA KEV Added
2023-10-10
An issue in Ailand clinic mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
Max CVSS
5.4
EPSS Score
0.05%
Published
2024-01-24
Updated
2024-01-26
84 vulnerabilities found
1 2 3 4
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!