CVE-2023-39047

An information leak in shouzu sweets oz v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
Configurations

Configuration 1 (hide)

cpe:2.3:a:lycorp:line_mini_app:13.6.1:*:*:*:*:*:*:*

History

05 Sep 2024, 16:35

Type Values Removed Values Added
CWE CWE-200

10 Nov 2023, 04:10

Type Values Removed Values Added
First Time Lycorp
Lycorp line Mini App
References (MISC) https://liff.line.me/1657207159-oGgKdNNW - (MISC) https://liff.line.me/1657207159-oGgKdNNW - Patch
References (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-39047.md - (MISC) https://github.com/syz913/CVE-reports/blob/main/CVE-2023-39047.md - Exploit, Third Party Advisory
CWE NVD-CWE-noinfo
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CPE cpe:2.3:a:lycorp:line_mini_app:13.6.1:*:*:*:*:*:*:*

02 Nov 2023, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-02 22:15

Updated : 2024-09-05 16:35


NVD link : CVE-2023-39047

Mitre link : CVE-2023-39047

CVE.ORG link : CVE-2023-39047


JSON object : View

Products Affected

lycorp

  • line_mini_app
CWE
NVD-CWE-noinfo CWE-200

Exposure of Sensitive Information to an Unauthorized Actor