All 4 CVE vulnerabilities found in Miniorange OTP Verification with Firebase, with AI-generated Chinese analysis, references, and POCs.
Vendor: cyberlord92
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-7665 | Miniorange OTP Verification with Firebase 3.1.0 - 3.6.2 - Unauthenticated Privilege Escalation CWE-862 | 8.1 | High | 2025-09-19 |
| CVE-2024-9863 | Miniorange OTP Verification with Firebase <= 3.6.0 - Privilege Escalation via Registration due to Administrator Default User Role Value CWE-266 | 9.8 | Critical | 2024-10-17 |
| CVE-2024-9862 | Miniorange OTP Verification with Firebase <= 3.6.0 - Unauthenticated Arbitrary User Password Change CWE-639 | 9.8 | Critical | 2024-10-17 |
| CVE-2024-9861 | Miniorange OTP Verification with Firebase <= 3.6.0 - Authentication Bypass CWE-288 | 8.1 | High | 2024-10-17 |
All 4 known CVE vulnerabilities affecting Miniorange OTP Verification with Firebase with full Chinese analysis, references, and POCs where available.