4 matches found
Hotspot Shield Vulnerability Could Reveal ‘Juicy’ Info About Users, Researcher Claims
UPDATE A vulnerability in the popular HotSpot Shield VPN client, which is promoted as being able to hide users’ identities, could expose their IP addresses and “other juicy info,” according to a security researcher. Paulos Yibelo, a researcher who has collected on a number of bug bounties in the...
CVE-2018-6460
Summary: CVE-2018-6460 affects Hotspot Shield, where a local web server (127.0.0.1:895) serves JSONP endpoints. The root cause is insufficient input filtering on the /status.js endpoint, allowing an unauthenticated POST with func=$_APPLOG.Rfunc to disclose sensitive machine data, including VPN st...
Hotspot Shield - Information Disclosure
Hotspot Shield - Information Disclosure Vulnerability Summary The following advisory describes a information disclosure found in Hotspot Shield. Hotspot Shield “provides secure and private access to a free and open internet. Enabling access to social networks, sports, audio and video streaming,...
Hotspot Shield - Information Disclosure
Vulnerability Summary The following advisory describes a information disclosure found in Hotspot Shield. Hotspot Shield “provides secure and private access to a free and open internet. Enabling access to social networks, sports, audio and video streaming, news, dating, gaming wherever you are.”...