4 matches found
Xiaomi Mi Browser / Mint Browser URL Spoofing
Exploit Title: URL Spoofing Exploit for Xiaomi Mi Browser v10.5.6-g and Mint Browser v1.5.3 Date : 11/04/2019 Exploit Author: Arif Khan @payloadartist Vendor Homepage: www.xiaomi.com Version : v10.5.6-g and v1.5.3 Tested On : MIUI OS, v10.1.3.0 CVE : CVE-2019-10875 Exploit:...
CVE-2019-10875
creationtimestamp| type| source ---|---|--- 2019-04-05 12:55:24+00:00| seen| https://t.me/thehackernews/253 2019-04-05 14:31:20+00:00| seen| https://t.me/SecLabNews/4658 2019-04-05 18:13:06+00:00| published-proof-of-concept| https://t.me/itsecnews/30 2019-04-09 21:10:18+00:00| seen|...
CVE-2019-10875
CVE-2019-10875 is a URL-spoofing vulnerability in Xiaomi Mi Browser (international) 10.5.6-g and Mint Browser 1.5.3 caused by how the q parameter is handled: the portion of the https URL before ?q= is not displayed, enabling spoofing of the address bar. Several public sources document a PoC and p...
Unpatched Flaw in Xiaomi's Built-in Browser App Lets Hackers Spoof URLs
EXCLUSIVE — Beware, if you are using a Xiaomi's Mi or Redmi smartphone, you should immediately update its built-in MI browser or the Mint browser available on Google Play Store for non-Xiaomi Android devices. That's because both web browser apps created by Xiaomi are vulnerable to a critical...