Vulnerabilities (CVE)

Filtered by vendor Cat Runner\ Subscribe
Filtered by product Decorate Home Project
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-13097 1 Cat Runner\ 1 Decorate Home Project 2024-11-21 5.0 MEDIUM 7.5 HIGH
The application API of Cat Runner Decorate Home version 2.8.0 for Android does not sufficiently verify inputs that are assumed to be immutable but are actually externally controllable. Attackers can manipulate users' score parameters exchanged between client and server.