Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Happypoint mobile application information disclosure vulnerability
Vulnerability Description
When processing Deeplink scheme, Happypoint mobile app 6.3.19 and earlier versions doesn't check Deeplink URL correctly. This could lead to javascript code execution, url redirection, sensitive information disclosure. An attacker can exploit this issue by enticing an unsuspecting user to open a specific malicious URL.
CVSS Information
N/A
Vulnerability Type
对生成代码的控制不恰当(代码注入)
Vulnerability Title
Happypoint mobile app 输入验证错误漏洞
Vulnerability Description
Happypoint mobile app是一款用于登录管理Happypoint支付卡的移动应用程序。 Happypoint mobile app 6.3.19及之前版本中存在输入验证错误漏洞,该漏洞源于程序没有正确验证Deeplink URL。攻击者可利用该漏洞执行JavaScript代码,重定向用户或泄露敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A