WiKi Security continuously reports security vulnerabilities through the KISA Bug Bounty Program, steadily strengthening its real-world detection and analysis capabilities.
2024 Reports
- KVE-2024-0771 Extensive Personal Information Exposure in the BMW-Vantage JoyMall Mobile Application
- KVE-2024-0770 Price Manipulation in the Electronic Payment Process for Driving Center Product Purchases at BMW Korea
2023 Reports
- KVE-2023-0263 Insufficient Parameter Validation Vulnerability on the OO Regional Website
- KVE-2023-0310 Information Exposure Vulnerability in the ID Retrieval Function of D University’s Portal System
- KVE-2023-5203 Excessive Error Information Exposure Vulnerability in HYBE Affiliate Websites
- KVE-2023-5282 Information Exposure Vulnerability in G University’s Academic Administration System
- KVE-2023-5283 Personal Information Leakage Vulnerability in O University’s SSO System
2022 Reports
- KVE-2022-0695 Multiple Vulnerabilities in the SIHAS IoT (SIHAS) Web Server
- KVE-2022-0696 Reflected XSS Vulnerabilities in SIHAS IoT (SIHAS) and SixShop
- KVE-2022-0697 Stored XSS Vulnerabilities in SIHAS IoT (SIHAS) and SixShop
- KVE-2022-0698 Authentication Weakness and Parameter Tampering Vulnerabilities in SIHAS IoT (SIHAS)
- KVE-2022-2187 Reflected XSS Vulnerability in the Imweb (imweb) Website
- KVE-2022-2188 Stored XSS Vulnerability in the Imweb (imweb) Website
2021 Reports
- KVE-2021-2038 Parameter Manipulation Vulnerability in the Sono Hotels & Resorts Mobile Application
- KVE-2021-1825 Parameter Manipulation Vulnerability in the BMW Mobile Application
- KVE-2021-0153 Exposure of Personal and Internal Information in the AMANO Parking Management System