syz913/CVE-reports

GitHub

github.com

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-61220 ↗	Oct 21, 2025Tuesday, 21 October 2025, 16:15	7.5 HIGH	—
The incomplete verification mechanism in the AutoBizLine com.mysecondline.app 1.2.91 allows attackers to log in as other users and gain unauthorized access to their personal information.
CVE-2023-48129 ↗	Jan 26, 2024Friday, 26 January 2024, 08:15	5.4 MEDIUM	—
An issue in kimono-oldnew mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48135 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in mimasaka_farm mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48133 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in angel coffee mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48132 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in kosei entertainment esportsstudioLegends mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48131 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in CHIGASAKI BAKERY mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48130 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in GINZA CAFE mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48128 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in UNITED BOXING GYM mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48127 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in myGAKUYA mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48126 ↗	Jan 26, 2024Friday, 26 January 2024, 07:15	5.4 MEDIUM	—
An issue in Luxe Beauty Clinic mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43999 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in COLORFUL_laundry mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43998 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Books-futaba mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43996 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Q co ltd mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43997 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Yoruichi hobby base mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-44001 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Ailand clinic mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-44000 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Otakara lapis totuka mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43989 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in mokumoku chohu mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43990 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in cherub-hair mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43988 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in nature fitness saijo mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43991 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in PRIMA CLINIC mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43995 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in picot.golf mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43994 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in Cleaning_makotoya mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43993 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in smaregi_app_market mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43992 ↗	Jan 24, 2024Wednesday, 24 January 2024, 10:15	5.4 MEDIUM	—
An issue in STOCKMAN GROUP mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-45559 ↗	Jan 3, 2024Wednesday, 3 January 2024, 15:15	8.2 HIGH	—
An issue in Tamaki_hamanoki Line v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
CVE-2023-45561 ↗	Jan 2, 2024Tuesday, 2 January 2024, 21:15	5.3 MEDIUM	—
An issue in A-WORLD OIRASE BEER_waiting Line v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
CVE-2023-43305 ↗	Dec 8, 2023Friday, 8 December 2023, 02:15	8.2 HIGH	—
An issue in studio kent mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43304 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	8.2 HIGH	—
An issue in PARK DANDAN mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43302 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	8.2 HIGH	—
An issue in sanTas mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43301 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	8.2 HIGH	—
An issue in DARTS SHOP MAXIM mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43300 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	8.2 HIGH	—
An issue in urban_project mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43299 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	5.3 MEDIUM	—
An issue in DA BUTCHERS mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-43298 ↗	Dec 7, 2023Thursday, 7 December 2023, 07:15	5.3 MEDIUM	—
An issue in SCOL Members Card mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.
CVE-2023-48134 ↗	Nov 16, 2023Thursday, 16 November 2023, 19:15	7.5 HIGH	—
nagayama_copabowl Line 13.6.1 is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor.
CVE-2023-45560 ↗	Nov 14, 2023Tuesday, 14 November 2023, 03:15	7.5 HIGH	—
An issue in Yasukawa memberscard v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
CVE-2023-45558 ↗	Nov 14, 2023Tuesday, 14 November 2023, 03:15	7.5 HIGH	—
An issue in Golden v.13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
CVE-2023-47373 ↗	Nov 9, 2023Thursday, 9 November 2023, 15:15	6.5 MEDIUM	—
The leakage of channel access token in DRAGON FAMILY Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47372 ↗	Nov 9, 2023Thursday, 9 November 2023, 15:15	6.5 MEDIUM	—
The leakage of channel access token in UPDATESALON C-LOUNGE Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47370 ↗	Nov 9, 2023Thursday, 9 November 2023, 15:15	6.5 MEDIUM	—
The leakage of channel access token in bluetrick Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47368 ↗	Nov 9, 2023Thursday, 9 November 2023, 15:15	6.5 MEDIUM	—
The leakage of channel access token in taketorinoyu Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47369 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in best_training_member Line 13.6.1 allows remote attackers to send malicious notifications.
CVE-2023-47367 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in platinum clinic Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47366 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in craft_members Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47365 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in Lil.OFF-PRICE STORE Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-47364 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in nagaoka taxi Line 13.6.1 allows remote attackers to send malicious notifications to victims
CVE-2023-47363 ↗	Nov 9, 2023Thursday, 9 November 2023, 14:15	6.5 MEDIUM	—
The leakage of channel access token in F.B.P members Line 13.6.1 allows remote attackers to send malicious notifications to victims.
CVE-2023-39057 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in hirochanKAKIwaiting v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39053 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in Hattoriya v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39042 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in Gyouza-newhushimi v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39054 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in Tokudaya.ekimae_mc v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39047 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in shouzu sweets oz v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39051 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in VISION MEAT WORKS Track Diner 10/10mbl v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39050 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in Daiky-value.Fukueten v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39048 ↗	Nov 2, 2023Thursday, 2 November 2023, 22:15	7.5 HIGH	—
An information leak in Tokudaya.honten v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-38846 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	7.5 HIGH	—
An issue in Marbre Lapin Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
CVE-2023-38845 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	7.5 HIGH	—
An issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
CVE-2023-38847 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	7.5 HIGH	—
An issue in CHRISTINA JAPAN Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
CVE-2023-38848 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	7.5 HIGH	—
An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
CVE-2023-38849 ↗	Oct 25, 2023Wednesday, 25 October 2023, 22:15	7.5 HIGH	—
An issue in tire-sales Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.
CVE-2023-39734 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in VISION MEAT WORKS TrackDiner10/10_mc Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39736 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in Fukunaga_memberscard Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39737 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in Matsuya Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39739 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in REGINA SWEETS&BAKERY Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39740 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in Onigiriya-musubee Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39733 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in TonTon-Tei Line v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39732 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in Tokueimaru_waiting Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39735 ↗	Oct 25, 2023Wednesday, 25 October 2023, 18:17	8.2 HIGH	—
The leakage of the client secret in Uomasa_Saiji_news Line 13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-39731 ↗	Oct 20, 2023Friday, 20 October 2023, 00:15	5.3 MEDIUM	—
The leakage of the client secret in Kaibutsunosato v13.6.1 allows attackers to obtain the channel access token and send crafted broadcast messages.
CVE-2023-43297 ↗	Oct 2, 2023Monday, 2 October 2023, 21:15	5.4 MEDIUM	—
An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.
CVE-2023-39052 ↗	Sep 20, 2023Wednesday, 20 September 2023, 20:15	6.5 MEDIUM	—
An information leak in Earthgarden_waiting 13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39045 ↗	Sep 20, 2023Wednesday, 20 September 2023, 20:15	6.5 MEDIUM	—
An information leak in kokoroe_members card Line 13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39041 ↗	Sep 20, 2023Wednesday, 20 September 2023, 19:15	6.5 MEDIUM	—
An information leak in KUKURUDELI Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39044 ↗	Sep 20, 2023Wednesday, 20 September 2023, 18:15	6.5 MEDIUM	—
An information leak in ajino-Shiretoko Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39046 ↗	Sep 18, 2023Monday, 18 September 2023, 22:15	6.5 MEDIUM	—
An information leak in TonTon-Tei_waiting Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39049 ↗	Sep 18, 2023Monday, 18 September 2023, 22:15	6.5 MEDIUM	—
An information leak in youmart-tokunaga v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39056 ↗	Sep 18, 2023Monday, 18 September 2023, 22:15	6.5 MEDIUM	—
An information leak in Coffee-jumbo v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39058 ↗	Sep 18, 2023Monday, 18 September 2023, 21:15	6.5 MEDIUM	—
An information leak in THE_B_members card v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39043 ↗	Sep 18, 2023Monday, 18 September 2023, 21:15	6.5 MEDIUM	—
An information leak in YKC Tokushima_awayokocho Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39040 ↗	Sep 18, 2023Monday, 18 September 2023, 21:15	6.5 MEDIUM	—
An information leak in Cheese Cafe Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-39039 ↗	Sep 18, 2023Monday, 18 September 2023, 21:15	6.5 MEDIUM	—
An information leak in Camp Style Project Line v13.6.1 allows attackers to obtain the channel access token and send crafted messages.
CVE-2023-31824 ↗	Jul 13, 2023Thursday, 13 July 2023, 15:15	7.5 HIGH	—
An issue found in DERICIA Co. Ltd, DELICIA v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp DELICIA function.
CVE-2023-31823 ↗	Jul 13, 2023Thursday, 13 July 2023, 15:15	7.5 HIGH	—
An issue found in Marui Co Marui Official app v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Marui Official Store function.
CVE-2023-31821 ↗	Jul 13, 2023Thursday, 13 July 2023, 15:15	7.5 HIGH	—
An issue found in ALBIS Co. ALBIS v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp ALBIS function.
CVE-2023-31825 ↗	Jul 13, 2023Thursday, 13 July 2023, 14:15	7.5 HIGH	—
An issue found in Inageya v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Inageya function.
CVE-2023-31822 ↗	Jul 13, 2023Thursday, 13 July 2023, 14:15	7.5 HIGH	—
An issue found in Entetsu Store v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Entetsu Store function.
CVE-2023-31820 ↗	Jul 13, 2023Thursday, 13 July 2023, 14:15	7.5 HIGH	—
An issue found in Shizutetsu Store v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp function.
CVE-2023-31819 ↗	Jul 13, 2023Thursday, 13 July 2023, 14:15	7.5 HIGH	—
An issue found in KEISEI STORE Co, Ltd. LIVRE KEISEI v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp function.
CVE-2023-31818 ↗	Jul 11, 2023Tuesday, 11 July 2023, 15:15	7.5 HIGH	—
An issue found in Marukyu Line v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp function.