CVE-2025-56694
5.8MEDIUMClient-side password validation (CWE-602) in lumasoft fotoShare Cloud 2025-03-13 allowing unauthenticated attackers to view password-protected photo albums.
Veröffentlicht: 8/27/2025Aktualisiert: 9/9/2025
Beschreibung
Client-side password validation (CWE-602) in lumasoft fotoShare Cloud 2025-03-13 allowing unauthenticated attackers to view password-protected photo albums.
KI-AnalyseKI-gestützt
Betroffene Produkte
lumasoftfotoshare_cloud
2025-03-13
Referenzen
- https://fotoshare.co/Product
- https://inf0sectom.github.io/posts/fotoshareco/ExploitThird Party Advisory
- https://support.lumasoft.co/hc/en-us/articles/360046797573-Event-Privacy-and-Link-SharingProduct