Design/Logic Flaw

The com.cutestudio.colordialer application through 2.1.8-2 for Android allows a remote attacker to initiate phone calls without user consent, because of improper export of the com.cutestudio.dialer.activities.DialerActivity component. A third-party application without any permissions can craft an...

PT-2023-22919 · Unknown · Wifiapautohotspotenablingactivity

Name of the Vulnerable Software and Affected Versions: WifiApAutoHotspotEnablingActivity versions prior to SMR Sep-2023 Release 1 Description: The issue is related to the improper export of android application components, allowing a local attacker to change the Auto Hotspot setting. This can be...

CVE-2021-25527

Improper export of Android application components vulnerability in Samsung Pay India only prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication...

Ramco mHub - Customized SSL, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Ramco mHub published at the 'play' market has multiple vulnerabilities...

Tilt - Certificates or keys found, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application Tilt published at the 'play' market has multiple vulnerabilities...

AppSales. Best Apps on Sale - Customized SSL, Dynamic Code Loading, Exported components vulnerabilities

HackApp vulnerability scanner discovered that application AppSales. Best Apps on Sale published at the 'play' market has multiple vulnerabilities...

NetCarShow - Cars: News & Pics - Customized SSL, Exported components, External URLs vulnerabilities

HackApp vulnerability scanner discovered that application NetCarShow - Cars: News & Pics published at the 'play' market has multiple vulnerabilities...