CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-56694

Client-side password validation (CWE-602) in lumasoft fotoShare Cloud 2025-03-13 allowing unauthenticated attackers to view password-protected photo albums.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 18.5%

CVSS Severity

CVSS v3 Score 5.8

References

https://fotoshare.co/
https://inf0sectom.github.io/posts/fotoshareco/
https://support.lumasoft.co/hc/en-us/articles/360046797573-Event-Privacy-and-Link-Sharing

Products affected by CVE-2025-56694

Lumasoft » Fotoshare Cloud » Version: 2025-03-13

cpe:2.3:a:lumasoft:fotoshare_cloud:2025-03-13

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-56694

Products

Pricing

Contact Us