1377 matches found
QARK - Tool to look for several security related Android application vulnerabilities
Q uick A ndroid R eview K it - This tool is designed to look for several security related Android application vulnerabilities, either in source code or packaged APKs. The tool is also capable of creating "Proof-of-Concept" deployable APKs and/or ADB commands, capable of exploiting many of the...
Newphoria Photon Application Authentication Bypass Vulnerability
Newphoria Photon for Android is a suite of lighting applications based on the Android platform from the Japanese company Newphoria. A security restriction bypass vulnerability exists in the Newphoria Photon application. It allows attackers to bypass URL whitelisting protection mechanisms and gain...
ownCloud: Webview Vulnerablity [OwnCloudAndroid Application]
Hi OwnCloud Team , Vulnerability Description: What is Webview?: We can load a remote URL or display HTML pages stored in our application within an activity using WebView. Internally it uses WebKit rendering engine to display web pages. It supports methods to navigate forward and backward, text...
Vine Android Mobile Application Detection
Binary data 8777.prm...
Siemens HomeControl for Room Automation for Android SSL Certificate Man-in-the-Middle Attack Vulnerability
Siemens HomeControl for Room Automation for Android is an Android-based home automation control software. Siemens HomeControl for Room Automation for Android fails to properly validate X.509 certificates, which allows spoofing of TLS/SSL servers via forged certificates and can be exploited by...
ES File Explorer v3.2.4.1 - Path Traversal Vulnerability
Document Title: =============== ES File Explorer v3.2.4.1 - Path Traversal Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1435 http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1876 CVE-ID: ======= CVE-2015-1876 Release Date:...
WiFi File Browser Pro v2.0.8 - Code Execution Vulnerability
WiFi File Browser Pro version 2.0.8 suffers from a code execution vulnerability. Product & Service Introduction: =============================== WiFi File Browser allows you to download and upload files to your mobile device by using your favourite web browser without the need of a USB cable. The...
CVE-2014-7793
The CB - Calciatori Brutti aka com.calciatori.brutti application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7744
The Musulmanin.com aka com.wSalyafiyailimurdjiya application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7644
The Go MSX MLS aka com.doapps.android.realestate.RE16b9c09c4d5b0e174208f35e7c49f9a0 application 2.3.4.MR3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7632
The news revolution - bahrain aka com.news.revolution.BH application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-4896
The Parque Imperial aka com.a792139893520606f84b2188a.a23428594a application 1.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7764
The Semper Invicta Fitness aka com.semper.invicta.fitness application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7789
The Zillion Muslims aka com.zillionmuslims.src application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7742
The Noticias del Vaticano aka com.wNoticiasdelVaticano application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7793
The CB - Calciatori Brutti aka com.calciatori.brutti application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7777
The Slingshot Forum aka com.tapatalk.theslingshotforumcom application 3.9.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7782
The Macedonia Hacienda Hotel aka appinventor.aiorolimpio999.HotelMacedonia application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7731
The Radio de la Cato aka com.radio.de.la.cato application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7727
The Dj Brad H aka com.dreamstep.wDjBradH application 0.90 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...