wwwziziyu
wwwziziyu
/ gist:7dbf7fd43f9e304ce0819f8a9784d2c6
Last active
November 22, 2023 05:22
Mercedes-benz can download repair orders and contract orders at will
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Mercedes me IOS APP unauthorized access to booking maintenance orders | |
| Affected version: APP version <=1.34.0 | |
| Test tool: iPhone 13 pro-ios 16.6.1+Yakit1.2.7 | |
| Vulnerability URL : | |
| We can check other orders by traversing odd numbers | |
| Order information includes 4s shop, owner's phone number, name, model, date and other information |
wwwziziyu
/ gist:6c7df331c9ad82d8d1800733d33e6438
Last active
November 22, 2023 05:21
Mercedes me IOS APP unauthorized access to booking maintenance orders
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Mercedes me IOS APP unauthorized access to booking maintenance orders | |
| Affected version: APP version <=1.34.0 | |
| Test tool: iPhone 13 pro-ios 16.6.1+Yakit1.2.7 | |
| Vulnerability URL : | |
| We can check other orders by traversing odd numbers | |
| Order information includes 4s shop, owner's phone number, name, model, date and other information |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Vulnerability description: Mercedes me IOS APP has the vulnerability of increasing shopping cart orders and querying shopping cart contents beyond its authority. | |
| An attacker can bypass the APP's authentication mechanism by constructing a specific request to add shopping cart orders and query the contents of the cart as another user. | |
| Since these operations are often subject to strict authentication, such overreach can lead to serious security issues. | |
| In addition, since the shopping cart may contain the user's personal information and sensitive data, such an unauthorized query may lead to the disclosure of the user's privacy. | |
| At the same time, the attacker can also obtain the user's shopping habits and preferences in this way, and further conduct targeted fraud activities. | |
| --------------------------------------------------- | |
| Affected version: APP version <=1.34.0 | |
| ---------------------------------------------------- |
wwwziziyu
/ CVE-2023-40829 POC introduce
Created
October 11, 2023 01:05
CVE-2023-40829 POC introduce
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| The cveform.mitre.org "Vulnerability Type" field was set to: | |
| Incorrect Access Control | |
| ⬤ The cveform.mitre.org "Affected Component" field was set to: | |
| Sensitive information can lead to the full amount of | |
| enterprise wechat data being obtained, file acquisition, and | |
| the use of enterprise wechat light application to send | |
| phishing files and links to internal forces |