DEBIAN-CVE-2017-6903

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

CVE-2017-6903

In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. This also affects Quake III Arena, OpenArena, OpenJK, iortcw, and other id Tech 3 aka Quake 3 engine forks. A malicious auto-downloaded file can trigger loading of crafted auto-downloaded files as...

Adobe Illustrator Draw - External URLs, Native code usage, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Adobe Illustrator Draw published at the 'play' market has multiple vulnerabilities...

Mozilla: Use-after-free working with ranges in selections (MFSA 2017-06)

A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox 52, Firefox ESR 45.8, Thunderbird 52, and Thunderbird 45.8...

Google Nexus Kernel FIQ Debugger Elevation of Privilege Vulnerability

Android on Nexus 9 is a Linux-based open source operating system for the Nexus 9 tablet developed by Google and the Open Handheld Alliance OHA. kernel FIQ debugger is one of the kernel debugger components. A security vulnerability exists in the kernel FIQ debugger in Android on Nexus 9 devices. A...

id Tech 3 -- remote code execution vulnerability

The content auto-download of id Tech 3 can be used to deliver maliciously crafted content, that triggers downloading of further content and loading and executing it as native code with user credentials. This affects ioquake3, ioUrbanTerror, OpenArena, the original Quake 3 Arena and other forks...

Session launches in HTML5 instead of native Workspace app/Citrix Receiver

When a user attempts to launch a session from the StoreFront website, the session would be launched automatically via Workspace app for HTML5 instead of native Workspace app...

Google Android NVIDIA GPU Driver elevation of privilege vulnerability (CNVD-2017-03836)

Android is a Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA, and the NVIDIA GPU Driver is an NVIDIA graphics processor driver component used in it. The NVIDIA GPU Driver in Android versions prior to 7.0 is vulnerable to a power lifting vulnerabilit...

Android Qualcomm camera driver elevation of privilege vulnerability

Android on Nexus 5X, etc. is an open source Linux-based operating system developed by Google and the Open Handheld Alliance OHA for the Nexus 5X, etc. Qualcomm camera driver is a Qualcomm-developed camera driver. Qualcomm camera driver is a camera driver developed by Qualcomm. An elevation of...

Android Qualcomm networking driver elevation of privilege vulnerability (CNVD-2017-02822)

Android on Nexus 5X is an open source Linux-based operating system for the Nexus 5X smartphone developed by Google and the Open Handset Alliance OHA.Qualcomm networking Driver is one of the networking library drivers. The Qualcomm networking driver is one of the network connectivity library...

Mozilla: Use-after-free working with ranges in selections (MFSA 2017-06)

A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox 52, Firefox ESR 45.8, Thunderbird 52, and Thunderbird 45.8...

國泰世華銀行 My MobiBank - Certificates or keys found, Native code usage, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application 國泰世華銀行 My MobiBank published at the 'play' market has multiple vulnerabilities...

Important: Red Hat Security Advisory: Red Hat JBoss Web Server 3.1.0 security and enhancement update

An update is now available for Red Hat JBoss Web Server 3 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Important: Red Hat Security Advisory: Red Hat JBoss Web Server security and enhancement update

An update is now available for Red Hat JBoss Web Server. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links i...

Audi Logistik Challenge - Customized SSL, Native code usage, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Audi Logistik Challenge published at the 'play' market has multiple vulnerabilities...

UBUNTU-CVE-2017-5404

A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox 52, Firefox ESR 45.8, Thunderbird 52, and Thunderbird 45.8...

Wordpress Plugin Mobile App Native Remote File Upload Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A remote file upload vulnerability exists in the Wordpress plugin Mobile App Native. Because the application fails to...

CVE-2017-6104

Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0...

Design/Logic Flaw

Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0...

CVE-2017-6104

Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0...