Home

Description

Client-side password validation (CWE-602) in lumasoft fotoShare Cloud 2025-03-13 allowing unauthenticated attackers to view password-protected photo albums.

PUBLISHED Reserved 2025-08-17 | Published 2025-08-27 | Updated 2025-08-27 | Assigner mitre

References

fotoshare.co/

support.lumasoft.co/...797573-Event-Privacy-and-Link-Sharing

inf0sectom.github.io/posts/fotoshareco/

cve.org (CVE-2025-56694)

nvd.nist.gov (CVE-2025-56694)

Download JSON