描述
Client-side password validation (CWE-602) in lumasoft fotoShare Cloud 2025-03-13 allowing unauthenticated attackers to view password-protected photo albums.
AI分析AI驱动
受影响产品
lumasoftfotoshare_cloud
2025-03-13
参考资料
- https://fotoshare.co/Product
- https://inf0sectom.github.io/posts/fotoshareco/ExploitThird Party Advisory
- https://support.lumasoft.co/hc/en-us/articles/360046797573-Event-Privacy-and-Link-SharingProduct