Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
(1) services/twitter/twitter-contact-view.c and (2) services/twitter/twitter-item-view.c in libsocialweb before 0.25.20 automatically connect to Twitter when no Twitter account is set, which might allow remote attackers to obtain sensitive information via a man-in-the-middle (MITM) attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libsocialweb库信息泄露漏洞
Vulnerability Description
libsocialweb 0.25.20之前版本中的(1)services/twitter/twitter-contact-view.c和(2)services/twitter/twitter-item-view.c中存在漏洞,该漏洞允许攻击者执行中间人攻击。远程攻击者可利用该漏洞获得对敏感信息的访问权限或者修改用户账号的完整性,也可能造成其他的攻击。
CVSS Information
N/A
Vulnerability Type
N/A