CVE-2014-7018
The CVE-2014-7018 entry concerns the Android app LOVE DANCE (com.efunfun.ddianle.lovedance) version 1.2.0626, which does not verify X.509 certificates from SSL servers. This lack of certificate validation can enable man-in-the-middle attacks to spoof servers and exfiltrate sensitive information v...