EUVD-2015-1950

Malware in sbrugna...

EUVD-2024-52194

Malicious code in bioql PyPI...

CVE-2025-43977

The com.skt.prod.dialer application through 12.5.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.skt.prod.dialer.activities.outgoingcall.OutgoingCallInternalBroadcaster component...

CVE-2025-43976

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component...

CVE-2025-43976

The com.enflick.android.tn2ndLine application through 24.17.1.0 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity component...

com.enflick.android.tn2ndLine 安全漏洞

com.enflick.android.tn2ndLine is an application. A security vulnerability exists in com.enflick.android.tn2ndLine version 24.17.1.0 and earlier, which stems from a vulnerability that allows arbitrary apps to make phone calls via a specially crafted intent, which could result in a phone call witho...

CVE-2025-43976

CVE-2025-43976 affects com.enflick.android.tn2ndLine up to version 24.17.1.0 on Android. The vulnerability allows any installed app (no permissions required) to initiate a phone call by sending a crafted intent to com.enflick.android.TextNow.activities.DialerActivity, enabling local interaction w...

CVE-2024-37574

The GriceMobile com.grice.call application 4.5.2 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.iui.mobile.presentation.MobileActivity...

CVE-2024-53935

The com.callos14.callscreen.colorphone aka iCall OS17 - Color Phone Flash application through 4.3 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.callos14.callscreen.colorphone.DialerActivity component...

CVE-2024-53934

The com.windymob.callscreen.ringtone.callcolor.colorphone aka Color Phone Call Screen Themes application through 1.1.2 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.frovis.androidbase.call.DialerActivi...

CVE-2024-53933

The com.callerscreen.colorphone.themes.callflash aka Color Call Theme & Call Screen application through 1.0.7 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the...

CVE-2024-53932

The com.remi.colorphone.callscreen.calltheme.callerscreen aka Color Phone: Call Screen Theme application through 21.1.9 for Android enables any application with no permissions to place phone calls without user interaction by sending a crafted intent via the...

CVE-2024-37575

The Mister org.mistergroup.shouldianswer application 1.4.264 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the org.mistergroup.shouldianswer.ui.defaultdialer.DefaultDialerActivity component...

CVE-2024-37573

The Talkatone com.talkatone.android application 8.4.6 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.talkatone.vedroid.ui.launcher.OutgoingCallInterceptor component...

CVE-2023-47354

An issue in the PowerOffWidgetReceiver function of Super Reboot Root Recovery v1.0.3 allows attackers to arbitrarily reset or power off the device via a crafted intent...

CVE-2023-42469

The com.full.dialer.top.secure.encrypted application through 1.0.1 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.full.dialer.top.secure.encrypted.activities.DialerActivity component...

CVE-2013-0122

The avast! Mobile Security application before 2.0.4400 for Android allows attackers to cause a denial of service application crash via a crafted application that sends an intent to com.avast.android.mobilesecurity.app.scanner.DeleteFileActivity with zero arguments...

CVE-2024-36437

The com.enflick.android.TextNow aka TextNow: Call + Text Unlimited application 24.17.0.2 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.enflick.android.TextNow.activities.DialerActivity...

PT-2025-2450 · Enflick · Textnow

Name of the Vulnerable Software and Affected Versions: TextNow: Call + Text Unlimited version 24.17.0.2 Description: The issue allows any installed application, without requiring permissions, to place phone calls without user interaction. This is achieved by sending a crafted intent via the...

com.enflick.android.TextNow 安全漏洞

com.enflick.android.TextNow TextNow: Call + Text Unlimited is a mobile application from TextNow, Inc. A security vulnerability exists in com.enflick.android.TextNow version 24.17.0.2, which originates from allowing any installed application to send a crafted intent to make a phone call via a...