CVE-2020-5800

CRITICAL

Eat Spray Love - Auth Bypass

Title source: llm

Description

The Eat Spray Love mobile app for both iOS and Android contains logic that allows users to bypass authentication and retrieve or modify information that they would not normally have access to.

References (1)

[Exploit, Third Party Advisory] https://www.tenable.com/security/research/tra-2020-65

Scores

CVSS v3 9.8

EPSS 0.0044

EPSS Percentile 63.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-669

Status published

Products (1)

eat_spray_love_project/eat_spray_love 2.0.20 (2 CPE variants)

Published Dec 07, 2020

Tracked Since Feb 18, 2026