EUVD-2014-4818

Malware in sbrugna...

pakistancement.net Cross Site Scripting vulnerability OBB-1465438

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CEMLink 6 Unrestricted WSDL Service Access / Poor Crypto Implementation Vulnerabilities

CEMLink 6 suffers from having unrestricted WSDL service access and a weak mechanism for password storage. Exploit Title: CEMLink6 multiple vulnerabilities Date Reported to vendor: 8/2/2017 Vendor never replied Exploit Author: email protected Vendor Homepage:...

CVE-2014-4899

The Indian Cement Review aka com.magzter.indiancementreview application 3.01 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Indian Cement Review aka com.magzter.indiancementreview application 3.01 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-4899

The Indian Cement Review aka com.magzter.indiancementreview application 3.01 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-4899

The CVE-2014-4899 entry concerns the Android app Indian Cement Review (com.magzter.indiancementreview) version 3.01, which fails to verify X.509 certificates from SSL servers. This allows man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate. The ...