{"@context":"https://openvex.dev/ns/v0.2.0","@id":"https://database.harborguard.co/cve/CVE-2026-7165/vex.json","author":"HarborGuard Database","role":"Document Creator","timestamp":"2026-06-22T15:45:24.290Z","version":1,"tooling":"HarborGuard Database (https://database.harborguard.co)","statements":[{"vulnerability":{"name":"CVE-2026-7165","@id":"https://www.cve.org/CVERecord?id=CVE-2026-7165","description":"The vulnerability is present in the ‘/addJugador’ endpoint:\n  *  The 'keyJugador' and 'keyJugadorObjectiu'  parameters allow the modification of other users’ information without requiring prior authorization validation. This could enable an authenticated attacker to alter any user’s ID and change their information.\n\n  *  The ‘punts’ and ‘numObjectiusEliminats’ fields allow arbitrary data to be added because user input is not properly validated. This makes it possible to obtain authentic prizes, "},"products":[{"@id":"cpe:2.3:a:gaudire:assassin_game:last_version:*:*:*:*:*:*:*","identifiers":{"cpe23":"cpe:2.3:a:gaudire:assassin_game:last_version:*:*:*:*:*:*:*"}}],"status":"affected","action_statement":"No fixed version is published yet; monitor the upstream advisory.","timestamp":"2026-06-22T15:45:24.290Z"}]}