Vulnerabilities reported by SamChen_696 :
漏洞列表
用戶所提交的漏洞列表。
-
iPas 網站下載成績證明 任意竄改身份和偽造成績證明
- HZD Code:ZD-2026-00577
- Risk:高
- Status:公開
- Vendor: 經濟部產業發展署 a.k.a. 經濟部產業發展署
- Date:2026/06/05
-
BigGo Reflected XSS
- HZD Code:ZD-2026-00181
- Risk:中
- Status:公開
- Vendor: 樂方股份有限公司 a.k.a. 樂方股份有限公司
- Date:2026/03/10
-
Funliday Open Redirect and Reflected XSS
- HZD Code:ZD-2025-01564
- Risk:高
- Status:公開
- Vendor: 趣放假股份有限公司 a.k.a. 趣放假股份有限公司
- Date:2026/01/22
-
Funliday Arbitrary File Upload leads to XSS & Malicious File Hosting in S3 Bucket
- HZD Code:ZD-2025-01563
- Risk:低
- Status:公開
- Vendor: 趣放假股份有限公司 a.k.a. 趣放假股份有限公司
- Date:2026/03/02
-
Funliday IDOR Leads to Arbitrary User Email Disclosure
- HZD Code:ZD-2025-01562
- Risk:中
- Status:公開
- Vendor: 趣放假股份有限公司 a.k.a. 趣放假股份有限公司
- Date:2026/01/22
-
全聯 PX Pay App 發票記帳 Hardcoded Secrets leads to Authentication Bypass
- HZD Code:ZD-2025-01525
- Risk:高
- Status:公開
- Vendor: 全聯實業 a.k.a. 全聯實業
- Date:2026/01/15
-
Acon-eco 連展電能 CVE-2025-55182
- HZD Code:ZD-2025-01476
- Risk:嚴重
- Status:公開
- Vendor: 連展電能科技股份有限公司 a.k.a. 連展電能科技股份有限公司
- Date:2026/02/09
-
普發1萬 智能客服網站 XSS
- HZD Code:ZD-2025-01384
- Risk:低
- Status:公開
- Vendor: 普發1萬 a.k.a. 普發1萬
- Date:2025/12/02
-
全聯 小時達 Order & Invoice API Broken Access Control Leading to Customer PII disclosure
- HZD Code:ZD-2025-01082
- Risk:高
- Status:公開
- Vendor: 全聯實業 a.k.a. 全聯實業
- Date:2025/10/29
-
Fansone Stored XSS & 多個漏洞問題
- HZD Code:ZD-2025-01069
- Risk:高
- Status:公開
- Vendor: 闇翼科技有限公司 a.k.a. 闇翼科技有限公司
- Date:2025/09/12