Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-0678

Malware in sbrugna...

2.1CVSS6.6AI score0.00079EPSS
Exploits1References11
Hacker One
Hacker Oneadded 2014/12/25 9:40 a.m.29 views

X (Formerly Twitter): HTML/XSS rendered in Android App of Crashlytics through fabric.io

Hey hi, While in fabric , the app name is rendered as HTML/XSS in android app of Crashlytics like shown in the screenshot. Steps to reproduce: Create an app with the name of payload in my case i have used, " under the following URL...

6.8AI score
Exploits0
The Hacker News
The Hacker Newsadded 2014/10/24 10:29 p.m.30 views

Twitter Launches Digits – A Password Free Login Service For App Developers

There’s a good news for app developers. On Wednesday at Twitter’s first annual developer conference Flight, the company announced a new tool for developers which will allow users to log-in to mobile applications using their phone numbers rather than a traditional username and password combination...

7.1AI score
Exploits0
Hacker One
Hacker Oneadded 2014/05/28 8:30 p.m.19 views

X (Formerly Twitter): CSRF in crashlytics.com

Hello Sir This is N B Sri Harsha I Have Found An CSRF in http://try.crashlytics.com/ POC ;-...

6.9AI score
Exploits0
Prion
Prionadded 2014/01/28 12:55 a.m.13 views

Design/Logic Flaw

The Starbucks 2.6.1 application for iOS stores sensitive information in plaintext in the Crashlytics log file /Library/Caches/com.crashlytics.data/com.starbucks.mystarbucks/session.clslog, which allows attackers to discover usernames, passwords, and e-mail addresses via an application that reads...

2.1CVSS6.4AI score0.00079EPSS
Exploits1References9Affected Software1
securityvulns
securityvulnsadded 2014/01/19 12:0 a.m.49 views

[CVE-2014-0647] Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application

Title: CVE-2014-0647 Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application Published: January 13, 2014 Reported to Vendor: December 2013 no direct response CVE Reference: CVE-2014-0647 Credit: This issue was discovered by Daniel E. Wood...

2.1CVSS0.1AI score0.00079EPSS
Exploits1
ThreatPost
ThreatPostadded 2014/01/15 2:3 p.m.11 views

Starbucks Mobile App Vulnerability Puts Data At Risk

A vulnerability in Starbucks’ mobile app could be putting coffee drinkers’ information–including their usernames, email addresses and passwords–at risk. The problem stems from the way session.clslog, the Crashlytics log file, handles those credentials in the event of a crash. Within the file ther...

6.6AI score
Exploits0References2
Packet Storm
Packet Stormadded 2014/01/14 12:0 a.m.47 views

Starbucks 2.6.1 Information Disclosure

Title: CVE-2014-0647 Insecure Data Storage of User Data Elements in Starbucks v2.6.1 iOS mobile application Published: January 13, 2014 Reported to Vendor: December 2013 no direct response CVE Reference: CVE-2014-0647 Credit: This issue was discovered by Daniel E. Wood...

2.1CVSS6.8AI score0.00079EPSS
Exploits1
Rows per page
Query Builder