Description
RushBet version 2022.23.1-b490616d allows a remote attacker to steal customer accounts via use of a malicious application. This is possible because the application exposes an activity and does not properly validate the data it receives.
No analysis available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2022-51593 | RushBet version 2022.23.1-b490616d allows a remote attacker to steal customer accounts via use of a malicious application. This is possible because the application exposes an activity and does not properly validate the data it receives. |
References
| Link | Providers |
|---|---|
| https://fluidattacks.com/advisories/miller/ |
|
History
Thu, 03 Apr 2025 20:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Status: PUBLISHED
Assigner: Fluid Attacks
Published:
Updated: 2025-04-03T19:28:19.566Z
Reserved: 2022-11-30T00:00:00.000Z
Link: CVE-2022-4235
Updated: 2024-08-03T01:34:49.840Z
Status : Modified
Published: 2023-01-18T22:15:10.537
Modified: 2026-06-17T05:20:19.960
Link: CVE-2022-4235
No data.
OpenCVE Enrichment
No data.
Weaknesses
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
EUVD