6 matches found
EUVD-2024-52233
Malicious code in bioql PyPI...
CVE-2025-31116
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. The mitigation for CVE-2024-29190 in validhost uses socket.gethostbyname, which is vulnerable to SSRF abuse using DNS rebinding technique. This...
CVE-2024-29190
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in android:host, so requests can also ...
PYSEC-2024-256
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In versions prior to 3.9.7, the requests.get request in the checkurl method is specified as allowredirects=True, which allows a server-side reque...
CVE-2024-29190
creationtimestamp| type| source ---|---|--- 2024-03-26 12:48:13+00:00| published-proof-of-concept| https://t.me/cKure/12599 2024-03-27 20:12:45+00:00| published-proof-of-concept| Telegram/TWxU8iN-TYn0kncSO1uxug7sedYGGHFx9vwZnyjHkQUOEM 2024-06-01 02:51:42+00:00| seen|...
CVE-2024-29190 MobSF SSRF Vulnerability on assetlinks_check(act_name, well_knowns)
Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in android:host, so requests can also ...