12 matches found
CVE-2025-15464
Exported Activity allows external applications to gain application context and directly launch Gmail with inbox access, bypassing security controls...
EUVD-2012-6002
Malware in sbrugna...
Malicious code in one-host-app-context (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c17ed3eae2517098a0d480f80d6166610d23a6d0e082bf72cc8853b96a71a613 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2023-8491 Malicious code in one-host-app-context (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c17ed3eae2517098a0d480f80d6166610d23a6d0e082bf72cc8853b96a71a613 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2022-48192
Cross-site Scripting vulnerability in Softing smartLink SW-HT before 1.30, which allows an attacker to execute a dynamic script JavaScript, VBScript in the context of the application...
Google Android 权限许可和访问控制问题漏洞
Google Android is a Linux-based open source operating system from Google, Inc. The Google Android Framework has security vulnerabilities that can be exploited by attackers to submit special requests that can execute arbitrary code in application context and elevate privileges...
app-context-connie (>=0.0.1 <=1.1.0), app-context-connie-firebase (>=0.0.1 <=0.0.3) +1 more potentially affected by CVE-2020-7706 via connie-lang (>=0.0.1 <=0.1.0)
connie-lang NPM version =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.2.1 Source cves: CVE-2020-7706 Source advisory: OSV:GHSA-8VV3-JXM8-F4VF...
app-context-connie (>=0.0.1 <=1.1.0), app-context-connie-firebase (>=0.0.1 <=0.0.3) +1 more potentially affected by CVE-2020-7706 via connie-lang (>=0.0.1 <=0.1.0)
connie-lang NPM version =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.2.1 Source cves: CVE-2020-7706 Source advisory: SNYK:JS-CONNIELANG-598853...
CVE-2012-6141
The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to 1 App::Session::Cookie or 2 App::Session::HTMLHidden, which is not properly handled when it is deserialized...
Code injection
The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to 1 App::Session::Cookie or 2 App::Session::HTMLHidden, which is not properly handled when it is deserialized...
CVE-2012-6141
The CVE-2012-6141 issue affects the Perl App::Context module (versions 0.01–0.968). Root cause: improper handling of Storable::thaw during deserialization. Impact: remote attackers can execute arbitrary code via crafted requests to App::Session::Cookie or App::Session::HTMLHidden, as described in...
CVE-2012-6141
The App::Context module 0.01 through 0.968 for Perl does not properly use the Storable::thaw function, which allows remote attackers to execute arbitrary code via a crafted request to 1 App::Session::Cookie or 2 App::Session::HTMLHidden, which is not properly handled when it is deserialized...