Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
2nd Line Android App version v1.2.92 and before (package name com.mysecondline.app), developed by AutoBizLine, Inc., contains an improper access control vulnerability in its authentication mechanism. The server only validates the first character of the user_token, enabling attackers to brute force tokens and perform unauthorized queries on other user accounts. Successful exploitation could result in privacy breaches and unauthorized access to user data.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AutoBizLine 2nd Line Android App 安全漏洞
Vulnerability Description
AutoBizLine 2nd Line Android App是美国AutoBizLine公司的一个手机通讯应用。 AutoBizLine 2nd Line Android App v1.2.92及之前版本存在安全漏洞,该漏洞源于身份验证机制存在访问控制不当,服务器仅验证user_token首字符,可能导致暴力破解令牌和未经授权访问用户数据。
CVSS Information
N/A
Vulnerability Type
N/A