183 matches found
appstore.foxitsoftware.com XSS vulnerability
Open Bug Bounty ID: OBB-666679 Description| Value ---|--- Affected Website:| appstore.foxitsoftware.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Apple iTunes Notify Script Insertion
Document Title: =============== Apple iTunes Notify - Bypass & Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2024 Followup ID: 654962036 Vulnerability Magazine:...
Apple iOS (Notify iTunes) - Bypass & Persistent Vulnerability
Document Title: =============== Apple iOS Notify iTunes - Bypass & Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2024 Followup ID: 654962036 Vulnerability Magazine:...
Apple iOS (Notify iTunes) - Bypass & Persistent Vulnerability
Document Title: =============== Apple iOS Notify iTunes - Bypass & Persistent Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2024 Followup ID: 654962036 Vulnerability Magazine:...
The Apple AppStore is now serious Bug: popular search be transferred to the lottery application-vulnerability warning-the black bar safety net
1 May 12, 23: 00 or so, the Apple App Store there is a major fault. Search for“Taobao”, the“Baidu”and“wechat”, and“Tencent”, the“live”and other popular keywords, drop-down the Association of the word all or the vast majority is with lottery tickets related to the website, such as“color-77”website...
Deepin Linux 15 - lastore-daemon Privilege Escalation
Exploit for linux platform in category local exploits !/usr/bin/env python encoding=utf8 Exploit Title: Lastore-daemon in Deepin 15 results in privilege escalation Date: 20160208 Exploit Author: King's Way Vendor Homepage: http://www.deepin.org Software Link:...
ownCloud: apps.owncloud.com: Referer protection Bypassed
@herlove has reported a vulnerability within the appstore at apps.owncloud.com allowing an adversary to bypass the HTTP referer based CSRF protection. This issue was caused by an insufficient regular expression which has been patched meanwhile. On request of the reporter this issue has been...
XcodeGhost Apple AppStore Malware
As more eyes peer into XcodeGhost, the malware that managed to sneak into Apple’s App Store, more trouble bubbles to the surface. Researchers at Palo Alto Networks said in an updated report that the malware contains a vulnerability that allows an attacker in man-in-the-middle position to control...
使用非官方渠道 Xcode 开发 App 造成的后门 (XcodeGhost)
经过对存在问题的应用进行 http 请求包进行抓取结果如下图 可以发现往 http://init.icloud-analysis.com 以POST的方式发送了数据, 而上述url则正是被爆出用于恶意收集用户信息的url 同时,XcodeGhost 病毒还可以在未越狱的 iPhone 上伪造弹窗进行钓鱼攻击,其生成的对话窗口仿真度非常高,很难辨别,因此用户如果在之前输入过iTunes密码,那么一定要尽快进行修改。 受影响部分应用列表: 微信IOS - 6.2.5 12306 - 2.12 滴滴出行 - 4.0.0.6 滴滴打车 - 3.9.7 高德地图 - 7.3.8 同花顺 -...
ownCloud: apps.owncloud.com: Multiple reflected XSS by insecure URL generation (IE only)
Due to a bug in the URL generation component mainly used by forms on the ownCloud appstore available at apps.owncloud.com is vulnerable to multiple reflected XSS. This problem seems only to be exploitable in Internet Explorer since other browsers are URL encoding GET parameters. This was...
Apple iTunes & AppStore - Persistent Store Vulnerability
Document Title: =============== Apple iTunes & AppStore - Persistent Store Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1517 Video View: https://www.youtube.com/watch?v=iPvmrFgvpDQ Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1512 Releas...
Apple iTunes & AppStore - Persistent Store Vulnerability
Document Title: =============== Apple iTunes & AppStore - Persistent Store Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1517 Video View: https://www.youtube.com/watch?v=iPvmrFgvpDQ Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1512 Releas...
Apple iTunes & AppStore - Persistent Invoice Vulnerability
Document Title: =============== Apple iTunes & AppStore - Persistent Invoice Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1512 Apple Security ID: 623920272 Video: http://www.vulnerability-lab.com/getcontent.php?id=1517 Vulnerability...
Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities
No description provided by source. Document Title: =============== Photo Video Album Transfer 1.0 iOS - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1166 Release Date: ============= 2013-12-10 Vulnerability Laboratory ID VL-ID...
Air Disk Wireless 1.9 iPad iPhone - Multiple Vulnerabilities
No description provided by source. Title: ====== Air Disk Wireless 1.9 iPad iPhone - Multiple Vulnerabilities Date: ===== 2013-02-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=850 VL-ID: ===== 850 Common Vulnerability Scoring System:...
WiFi Camera Roll 1.2 iOS - Multiple Vulnerabilities
No description provided by source. Document Title: =============== WiFi Camera Roll v1.2 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1192 Release Date: ============= 2014-02-08 Vulnerability Laboratory ID VL-ID:...
OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability
No description provided by source. Document Title: =============== OliveOffice Mobile Suite 2.0.3 iOS - File Include Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1110 Release Date: ============= 2013-10-13 Vulnerability Laboratory ID...
Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities
No description provided by source. Title: ====== Talkie Bluetooth Video iFiles 2.0 iOS - Multiple Vulnerabilities Date: ===== 2013-08-30 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1062 VL-ID: ===== 1063 Common Vulnerability Scoring System:...
File Hub v1.9.1 iOS - Multiple Web Vulnerabilities
Document Title: =============== File Hub v1.9.1 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1195 Release Date: ============= 2014-02-15 Vulnerability Laboratory ID VL-ID: ==================================== 1195...
WiFiles HD v1.3 iOS - File Include Web Vulnerability
Document Title: =============== WiFiles HD v1.3 iOS - File Include Web Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1214 Release Date: ============= 2014-02-22 Vulnerability Laboratory ID VL-ID: ==================================== 1214...