This may cause the user's details to be displayed in an inappropriate context, such as on a profile of a different user or in an external site. Kare Emakin 5.0.341.0 is affected by Cross Site Scripting (XSS) via the /rpc/membership/setProfile DisplayName field, which is mishandled when rendering the Activity Stream page.This may cause the user's details to be displayed in an inappropriate context, such as on a profile of a different user or in an external site. 5.0.341.0 - 05/19/2019 - 1815
--------------------------
A remote attacker may be able to cause a Denial of Service (DoS) condition due to an unhandled exception occurring when processing requests to the /rpc/membership/setPassword RPC request.
A remote attacker may be able to cause a Denial of Service (DoS) condition due to an unhandled exception occurring when processing requests to the /rpc/membership/setPassword RPC request.
A remote attacker may be able to cause a Denial of Service (DoS) condition due to an unhandled exception occurring when processing requests to the /rpc/membership/getPassword RPC request.
A remote attacker may be able to cause a Denial of Service (DoS) condition due to an unhandled exception occurring when processing requests to the /rpc/membership/getPassword RPC request. 5
Solution
The issue can be resolved by updating to Kare Emakin 5.0.341.1 or later.
Versions Affected
CVE-2020-25491 is exploited in some versions of Kare Emakin 5.0.341.0 and below
5.0.342.0 - 05/19/2019 - 1815
Description of Kare Emakin 5.0.341.0 Malware
Kare Emakin 5.0.341.0 is a malware that may be spread through the social media platform Facebook, as well as through email and various other means.
Kare Emakin 5.0.341.0 is a malware that may be spread through the social media platform Facebook, as well as through email and various other means.
Kare Emakin 5.0.341.0 is a malware that may be spread through the social media platform Facebook, as well as through email and various other means.
Timeline
Published on: 09/16/2022 20:15:00 UTC
Last modified on: 09/21/2022 15:32:00 UTC