CVE-2025-26522 in RupeeWeb
الملخص
بحسب MITRE • 14/02/2025
This vulnerability exists in RupeeWeb trading platform due to improper implementation of OTP validation mechanism in certain API endpoints. A remote attacker with valid credentials could exploit this vulnerability by manipulating API responses.
Successful exploitation of this vulnerability could allow the attacker to bypass Two-Factor Authentication (2FA) for other user accounts.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.