CVE-2024-0953

The CVE-2024-0953 entry corresponds to a vulnerability in Firefox for iOS (affecting versions before 129) where scanning a QR code via the built-in QR Code Scanner navigates to the URL without a user confirmation. Root cause: the scanner does not prompt before navigation, potentially directing us...

CVE-2024-0953

When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially direct them to unwanted content. This vulnerability affects Firefox for iOS 129...

PT-2024-15933 · Mozilla · Firefox For Ios

Name of the Vulnerable Software and Affected Versions: Firefox for iOS versions prior to 129 Description: When a user scans a QR Code with the QR Code Scanner feature, the user is not prompted before being navigated to the page specified in the code. This may surprise the user and potentially...

Explained: Quishing

Quishing is phishing using QR Quick Response codes. QR codes are basically two-dimensional barcodes that hold encoded data, and they can be used to work as a link. Point your phone's camera at a QR code and it will ask you if you want to visit the link. The use of QR codes in malicious campaigns ...

SCodeScanner - Stands For Source Code Scanner Where The User Can Scans The Source Code For Finding The Critical Vulnerabilities

SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities. The main objective for this scanner is to find the vulnerabilities inside the source code before code gets published in Prod. Features 1. Supported PHP Language 2...

Samsung Settings Implicit Intent Hijacking Vulnerability

Samsung Settings is a settings feature for Samsung Samsung mobile devices.An implicit intent hijacking vulnerability exists in Samsung Settings. The vulnerability stems from hijacking of unprivileged applications and can be exploited by attackers to obtain Wi-Fi SSIDs and passwords using a...

CVE-2022-30729

Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...

CVE-2022-30729

Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...

Information disclosure

Implicit Intent hijacking vulnerability in Settings prior to SMR Jun-2022 Release 1 allows attackers to get Wi-Fi SSID and password via a malicious QR code scanner...

CVE-2022-30729

CVE-2022-30729: Implicit Intent hijacking vulnerability in Samsung Settings prior to SMR Jun-2022 Release 1 enables retrieval of Wi‑Fi SSID and passwords via a malicious QR scanner. Affected component: Samsung Settings; root cause is misuse of implicit intents that can be hijacked by unprivileged...

GHSA-CQP7-HWM3-CFG7 XSS vulnerability in Jenkins Warnings Next Generation Plugin

A cross-site scripting vulnerability exists in Jenkins Warnings Next Generation Plugin 1.0.1 and earlier in src/main/java/io/jenkins/plugins/analysis/core/model/DetailsTableModel.java, src/main/java/io/jenkins/plugins/analysis/core/model/SourceDetail.java,...

Widespread FluBot and TeaBot Malware Campaigns Targeting Android Devices

Researchers from the Bitdefender Mobile Threats team said they have intercepted more than 100,000 malicious SMS messages attempting to distribute Flubot malware since the beginning of December. "Findings indicate attackers are modifying their subject lines and using older yet proven scams to enti...

Reduce Risk with an Open Source Code Scanner

Explore the three risks that open source code scanning can mitigate, allowing SecOps and DevOps teams to bridge the gap for more secure application building...

谷歌 Google Chrome 输入验证错误漏洞

Google Chrome is a web browser from Google, an American company. A security vulnerability exists in Google Chrome versions prior to 90.0.4430.72 in the "QR scanner". An attacker can exploit this vulnerability to bypass security restrictions...

WPSploit - WordPress Plugin Code Scanner

This tool is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins. For more info click here. Usage $ git clone https://github.com/m4ll0k/wpsploit.git $ cd wpsploit $ python wpsploit.py pluginfile.php or $ wget...

Bytecode Viewer - A Java 8 Jar & Android Apk Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

Bytecode Viewer is an Advanced Lightweight Java Bytecode Viewer, GUI Java Decompiler, GUI Bytecode Editor, GUI Smali, GUI Baksmali, GUI APK Editor, GUI Dex Editor, GUI APK Decompiler, GUI DEX Decompiler, GUI Procyon Java Decompiler, GUI Krakatau, GUI CFR Java Decompiler, GUI FernFlower Java...

Raptor - Web-based Source Code Vulnerability Scanner

Raptor is a web-based web-serivce + UI github centric source-vulnerability scanner i.e. it scans a repository with just the github repo url. You can setup webhooks to ensure automated scans every-time you commit or merge a pull request. The scan is done asynchonously and the results are available...

QR Code Scanner - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application QR Code Scanner published at the 'play' market has multiple vulnerabilities...

QR code scanner free - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application QR code scanner free published at the 'play' market has multiple vulnerabilities...

QR Code Scanner - Dangerous filesystem permissions, Dynamic Code Loading, Exported components vulnerabilities

HackApp vulnerability scanner discovered that application QR Code Scanner published at the 'play' market has multiple vulnerabilities...