| शीर्षक | Tomofun Furbo 360 ≤ FB0035_FW_036 Server Side Request Forgery |
|---|
| विवरण | An attacker who compromises the Furbo account of a legitimate user can coerce the device to make a request to an attacker-controlled server by modifying the URL which is sent during the recording of a new treat toss sound. The end result is that the Furbo will download a file from the attacker's server. |
|---|
| उपयोगकर्ता | jTag Labs (UID 51246) |
|---|
| सबमिशन | 23/09/2025 07:11 PM (7 महीनों पहले) |
|---|
| संयम | 11/10/2025 08:33 PM (18 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 328047 [Tomofun Furbo 360 तक FB0035_FW_036 Account अधिकार वृद्धि] |
|---|
| अंक | 14 |
|---|