EUVD-2016-5793

Malware in sbrugna...

EUVD-2015-5582

Malware in sbrugna...

CVE-2016-4811

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors...

Design/Logic Flaw

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors...

CVE-2016-4811

CVE-2016-4811 affects NTT Broadband Platform Japan Connected-free Wi‑Fi apps: Android up to 1.15.1 and iOS up to 1.13.0. A MITM attacker can execute arbitrary API calls, gaining API access. Impact: arbitrary API execution on affected Android/iOS clients. Remediation: update to the latest version ...

CVE-2016-4811

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.15.1 and earlier for Android and 1.13.0 and earlier for iOS allows man-in-the-middle attackers to obtain API access via unspecified vectors...

JVN#46888319: Japan Connected-free Wi-Fi vulnerable to API execution

Japan Connected-free Wi-Fi provided by NTT Broadband Platform, Inc. contains a vulnerability which allows an arbitrary API to be executed by a man-in-the-middle attacker. Impact Android version of this app may allow an arbitrary API to be executed if permissions to execute that API are granted in...

NTT Broadband Platform Japan Connected-free Wi-Fi Application Security Bypass Vulnerability

NTT Broadband Platform Japan Connected-free Wi-Fi application for Android and iOS is a suite of Android and iOS-based applications from NTT Broadband Platform Japan for finding and automatically connecting to nearby free Wi-Fi in Japan. free Wi-Fi application for Android and iOS by NTT Broadband...

NTT Broadband Platform Japan Connected-free Wi-Fi Application Cross-Site Scripting Vulnerability

NTT Broadband Platform Japan Connected-free Wi-Fi application for Android and iOS is a suite of Android and iOS-based applications from NTT Broadband Platform Japan for finding and automatically connecting to nearby free Wi-Fi in Japan. free Wi-Fi application for Android and iOS by NTT Broadband...

CVE-2015-5629

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors...

Code injection

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors...

Cross site scripting

Cross-site scripting XSS vulnerability in the NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted SSID...

CVE-2015-5629

The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows attackers to bypass a URL whitelist protection mechanism and obtain API access via unspecified vectors...

CVE-2015-5629

The CVE pertains to the NTT Broadband Platform Japan Connected-free Wi‑Fi application (Android up to 1.6.0 and iOS up to 1.0.2). Multiple connected sources confirm a vulnerability that allows bypassing the URL whitelist protection and may enable arbitrary API execution or loading of arbitrary pag...

CVE-2015-5630

Cross-site scripting XSS vulnerability in the NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and earlier for Android and 1.0.2 and earlier for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted SSID...

JVN#04644117: Japan Connected-free Wi-Fi vulnerable to allow URL whitelist bypass

Japan Connected-free Wi-Fi provided by NTT Broadband Platform, Inc. contains an issue where an arbitrary page may be loaded if the application is launched with the URL-scheme. Impact Android version of this app may allow an arbitrary API to be executed if permissions to execute that API are grant...

JVN#41048401: Japan Connected-free Wi-Fi vulnerable to script injection

Japan Connected-free Wi-Fi provided by NTT Broadband Platform, Inc. is vulnerable to script injection when displaying malformed strings contained in SSID. Impact When the device running the app connects to an access point and its SSID contains malicious script, the script may be executed. Solutio...