Information Leak in kokoroe_members Card Line 13.6.1: Channel Access Token Exposure and Crafted Message Injection Vulnerability

Information Leak in kokoroe_members Card Line 13.6.1: Channel Access Token Exposure and Crafted Message Injection Vulnerability

CVE-2023-39045 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

An information leak in kokoroe_members card Line 13.6.1 allows attackers to obtain the channel access token and send crafted messages.

Learn more about our Web Application Penetration Testing UK.