Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
πŸ”₯ Daily Hot!
πŸ’ͺ🏽 CPE Enhanced Advisories
πŸ•Ά Shadow Exploits
πŸ•΅πŸΌ Vulners CPE
πŸ” Security news
πŸ’» Exploit updates
πŸ“‘ Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
πŸ€– AI High Score
πŸ“° CVE Feed
show all

3 matches found

ATTACKERKB
ATTACKERKBβ€’added 2026/04/06 8:52 p.m.β€’3 views

CVE-2026-35394

Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobileopenurl tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls...

8.3CVSS6.2AI score0.00027EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesβ€’added 2026/04/04 12:0 a.m.β€’4 views

PT-2026-30323

Summary The mobile open url tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls, SMS messages, and content provider access. Details The vulnerable code...

8.3CVSS6.3AI score0.00027EPSS
Exploits1References8
Positive Technologies
Positive Technologiesβ€’added 2008/11/25 12:0 a.m.β€’2 views

PT-2008-5526 Β· Apple Β· IosΒ +2

Name of the Vulnerable Software and Affected Versions: Safari in Apple iPhone OS versions 1.0 through 2.1 Safari in Apple iPhone OS for iPod touch versions 1.1 through 2.1 Description: The issue allows remote attackers to make arbitrary phone calls via a crafted HTML document because Safari does...

2.6CVSS6.2AI score0.01155EPSS
Exploits0References8
Rows per page
Query Builder