CVE-2025-0615

Medium CVSS: 5.3

Input validation vulnerability in Qualifio's Wheel of Fortune. This vulnerability allows an attacker to modify an email to contain the ‘+’ symbol to access the application and win prizes as many times as wanted.

Vendor

Product

CWE

CWE-22

Yayın Tarihi

2025-01-21 12:15:27

Güncelleme

2026-04-15 00:35:42

Source Identifier

cve-coordination@incibe.es

KEV Date Added

Kategoriler

CWE-22 MEDIUM 2025

Referanslar

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-qualifios-wheel-fortune