62 matches found
Ziepod+ 1.0 Cross Application Scripting
No description provided by source. !/usr/bin/python import thread import socket |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | |...
Chrome for Android - UXSS via com.android.browser.application_id Intent extra
CVE Number: CVE-2012-4905 Title: Chrome for Android - UXSS via com.android.browser.applicationid Intent extra Affected Software: Confirmed on Chrome for Android v18.0.1025123 Credit: Takeshi Terada Issue Status: v18.0.1025308 was released which fixes this vulnerability Overview: By sending a...
CVE-2012-4904
Cross-application scripting vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script via unspecified vectors, as demonstrated by "Universal XSS UXSS" attacks against the current tab...
CVE-2012-4904
Cross-application scripting vulnerability in Google Chrome before 18.0.1025308 on Android allows remote attackers to inject arbitrary web script via unspecified vectors, as demonstrated by "Universal XSS UXSS" attacks against the current tab...
CVE-2012-4904
CVE-2012-4904 is a Cross-site scripting (UXSS) vulnerability in Google Chrome for Android, affecting versions before 18.0.1025308. The issue allows remote attackers to inject arbitrary web script via unspecified vectors, demonstrated as UXSS attacks on the current tab. Affected product: Google Ch...
Advisory: Dolphin Browser HD Cross-Application Scripting
1 Background ============ Android applications are executed in a sandbox environment, to ensure that no application can access sensitive information held by another, without adequate privileges. For example, the Dolphin browser application holds sensitive information such as cookies, cache and...
Dolphin Browser HD Cross Application Scripting
1 Background ============ Android applications are executed in a sandbox environment, to ensure that no application can access sensitive information held by another, without adequate privileges. For example, the Dolphin browser application holds sensitive information such as cookies, cache and...
CVE-2011-2357
Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 and 3.1 allows local applications to bypass the sandbox and execute arbitrary Javascript in arbitrary domains by 1 causing the MAXTAB number of tabs to be opened, then loading a URI to the targeted...
CVE-2011-2357
Cross-application scripting vulnerability in the Browser URL loading functionality in Android 2.3.4 and 3.1 allows local applications to bypass the sandbox and execute arbitrary Javascript in arbitrary domains by 1 causing the MAXTAB number of tabs to be opened, then loading a URI to the targeted...
CVE-2011-2357
CVE-2011-2357 describes a cross-application scripting flaw in Android’s Browser URL loading, enabling a non-privileged app to inject JavaScript into arbitrary domains and break sandboxing. The vulnerability has two exploitation vectors: (1) exhausting MAX_TABS and loading a target URL followed by...
Android Browser Cross-Application Scripting (CVE-2011-2357)
============================================================= Android Browser Cross-Application Scripting CVE-2011-2357 ============================================================= 1 Background -------------- Android applications are executed in a sandbox environment, to ensure that no applicati...
Cross Application Scripting vulnerability in Android browser
Cross Application Scripting vulnerability in Android browser Recently IBM researchers detected a security vulnerability in Android's Browser which can be exploited by a non-privileged application in order to inject JavaScript code into the context of any domain.This vulnerability has the same...
Ziepod+ 1.0 Cross Application Scripting
!/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...
Ziepod+ 1.0 - CrossApplication Scripting
Ziepod+ 1.0 - CrossApplication Scripting !/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // |...
Ziepod+ 1.0 - CrossApplication Scripting
!/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | | | / / / / | | / / / / / / / \ / / / / \ | | / // // / / / / / // / / / / / // / // / / / / / / | | /// //,// // //,// // // | | | | http://www.corelan.be:8800 | | |...
Ziepod+ 1.0 Cross Application Scripting
Exploit for windows platform in category remote exploits ======================================= Ziepod+ 1.0 Cross Application Scripting ======================================= !/usr/bin/python import thread import socket """ |------------------------------------------------------------------| | ...
KDE 4.4.1 Ksysguard Remote Command Execution
Exploit Title: Ksysguard RCE via Cross Application Scripting Date: 2010 03 20 Author: Emanuele 'emgent' Gentili Code: http://www.backtrack.it/emgent/exploits/20100320KsysguardRCECAS.txt Version:...
KDE <= 4.4.1 Ksysguard RCE via Cross Application Scripting
No description provided by source. Exploit Title: Ksysguard RCE via Cross Application Scripting Date: 2010 03 20 Author: Emanuele 'emgent' Gentili Code: http://www.backtrack.it/emgent/exploits/20100320KsysguardRCECAS.txt Version: = 4.4.1 CVE : N/A Vendor: http://www.kde.org Video:...
KDE 4.4.1 - Ksysguard Remote Code Execution (via Cross Application Scripting)
KDE 4.4.1 - Ksysguard Remote Code Execution via Cross Application Scripting Exploit Title: Ksysguard RCE via Cross Application Scripting Date: 2010 03 20 Author: Emanuele 'emgent' Gentili Code: http://www.backtrack.it/emgent/exploits/20100320KsysguardRCECAS.txt Version: halfapple: emanuelegentili...
KDE <= 4.4.1 Ksysguard RCE via Cross Application Scripting Vulnerability
Exploit for multiple platform in category remote exploits ======================================================================== KDE halfapple: emanuelegentili$ 0day.today 2018-03-28...