Malicious code in modiov-khan-avd (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dc7546b8af6e3dbd01a2401041a63aecc4fc446a4a181e716bb8c0752093f870 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

EUVD-2014-5553

Malware in sbrugna...

Apple iPadOS和Apple iOS 缓冲区错误漏洞

Apple iOS and Apple iPadOS are both products of Apple Inc. Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer. A buffer error vulnerability exists in iPhone 6s and later, iPad Pro all models, iPad Air 2nd generation and...

avd-sports.nl Improper Access Control vulnerability OBB-2240370

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Runtime Mobile Security (RMS) - A Powerful Web Interface That Helps You To Manipulate Android Java Classes And Methods At Runtime

Runtime Mobile Security RMS , powered by FRIDA, is a powerful web interface that helps you to manipulate Android Java Classes and Methods at Runtime. You can easily dump all the loaded classes and relative methods, hook everything on the fly, trace methods args and return value, load custom scrip...

Mobile Security Framework: MobSF

Mobile Security Framework is an intelligent, all-in-one open source mobile application Android/iOS automated pen-testing framework capable of performing static and dynamic analysis. We’ve been depending on multiple tools to carry out reversing, decoding, debugging, code review, and pen-test and...

[ASA-201704-4] nss: arbitrary code execution

Arch Linux Security Advisory ASA-201704-4 ========================================= Severity: Critical Date : 2017-04-20 CVE-ID : CVE-2017-5461 Package : nss Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-247 Summary ======= The package nss before version...

AvD Pannenhilfe - Dynamic Code Loading, External URLs, Key for Android SQLite Databases Encryption vulnerabilities

HackApp vulnerability scanner discovered that application AvD Pannenhilfe published at the 'play' market has multiple vulnerabilities...

CVE-2014-5666

The AVD Download Video aka com.myboyfriendisageek.videocatcher.demo application 3.3.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The AVD Download Video aka com.myboyfriendisageek.videocatcher.demo application 3.3.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5666

The AVD Download Video aka com.myboyfriendisageek.videocatcher.demo application 3.3.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5666

CVE-2014-5666 concerns the Android app “AVD Download Video” (com.myboyfriendisageek.videocatcher.demo), version 3.3.13. The vulnerability is that the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via...