wapt-simulation

Web Application Penetration Testing WAPT Simulation This re...

PT-2025-54253

Name of the Vulnerable Software and Affected Versions NLB mKlik Macedonia version 3.3.12 Description The software contains a SQL injection issue in the international transfer parameters. This allows attackers to manipulate database queries by injecting arbitrary SQL code through unsanitized input...

EUVD-2017-18515

Malware in sbrugna...

EUVD-2017-18498

Malware in sbrugna...

EUVD-2017-14991

Malware in sbrugna...

EUVD-2017-18530

Malware in sbrugna...

CVE-2025-9097

A vulnerability was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cicprod.bad. The manipulation leads to improper export of android application...

CVE-2025-9097 Euro Information CIC banque et compte en ligne App com.cic_prod.bad AndroidManifest.xml improper export of android application components

A vulnerability was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cicprod.bad. The manipulation leads to improper export of android application...

CVE-2025-9097 Euro Information CIC banque et compte en ligne App com.cic_prod.bad AndroidManifest.xml improper export of android application components

A vulnerability was found in Euro Information CIC banque et compte en ligne App 12.56.0 on Android. Affected by this vulnerability is an unknown functionality of the file AndroidManifest.xml of the component com.cicprod.bad. The manipulation leads to improper export of android application...

CVE-2025-8207

A vulnerability was found in Canara ai1 Mobile Banking App 3.6.23 on Android and classified as problematic. This issue affects some unknown processing of the file AndroidManifest.xml of the component com.canarabank.mobility. The manipulation leads to improper export of android application...

CVE-2025-8207 Canara ai1 Mobile Banking App com.canarabank.mobility AndroidManifest.xml improper export of android application components

A vulnerability was found in Canara ai1 Mobile Banking App 3.6.23 on Android and classified as problematic. This issue affects some unknown processing of the file AndroidManifest.xml of the component com.canarabank.mobility. The manipulation leads to improper export of android application...

CVE-2025-8207 Canara ai1 Mobile Banking App com.canarabank.mobility AndroidManifest.xml improper export of android application components

A vulnerability was found in Canara ai1 Mobile Banking App 3.6.23 on Android and classified as problematic. This issue affects some unknown processing of the file AndroidManifest.xml of the component com.canarabank.mobility. The manipulation leads to improper export of android application...

CVE-2025-8207

CVE-2025-8207 affects Canara ai1 Mobile Banking App version 3.6.23 on Android. The issue stems from unknown processing of AndroidManifest.xml in the com.canarabank.mobility component, causing improper export of Android application components. Local access is required to exploit. The exploit has b...

PT-2025-30986 · Canara Bank · Canara Ai1 Mobile Banking App

Name of the Vulnerable Software and Affected Versions: Canara ai1 Mobile Banking App version 3.6.23 Description: A problematic issue exists due to improper export of android application components resulting from unknown processing of the AndroidManifest.xml file within the com.canarabank.mobility...

This AI-Powered Cybercrime Service Bundles Phishing Kits with Malicious Android Apps

A Spanish-speaking cybercrime group named GXC Team has been observed bundling phishing kits with malicious Android applications, taking malware-as-a-service MaaS offerings to the next level. Singaporean cybersecurity company Group-IB, which has been tracking the e-crime actor since January 2023,...

FakeCalls Vishing Malware Targets South Korean Users via Popular Financial Apps

An Android voice phishing aka vishing malware campaign known as FakeCalls has reared its head once again to target South Korean users under the guise of over 20 popular financial apps. "FakeCalls malware possesses the functionality of a Swiss army knife, able not only to conduct its primary aim b...

FluBot Android malware mimics FedEx, Chrome apps to steal user data

By Deeba Ahmed Cybersecurity company PRODAFT reports that newly discovered FluBot Android malware is impersonating an Android mobile banking application. This is a post from HackRead.com Read the original post: FluBot Android malware mimics FedEx, Chrome apps to steal user data...

Cerberus Enters the Android Malware Rental Scene

A never-before-seen Android banking trojan, dubbed Cerberus, is being rented out on underground forums by a threat group that likes to engage with the defense community publicly via Twitter. According to a Tuesday posting from ThreatFabric, Cerberus isn’t based on the leaked Anubis source code th...

Cayuga Lake National Bank Information Disclosure Breach

Cayuga Lake National Bank is a Banking Services app. cayuga-lake-national-bank/id1151601539 app 4.0.1 for iOS fails to validate SSL servers with X.509 certificates, allowing man-in-the-middle attackers to spoof servers and gain access to sensitive information by crafting certificates...

CVE-2017-9596

The "CFB Mobile Banking" by Citizens First Bank Wisconsin app 3.0.1 -- aka cfb-mobile-banking/id1081102805 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...