Lucene search
K

4 matches found

NVD
NVD
added 2023/06/26 4:15 p.m.26 views

CVE-2023-29459

The laola.redbull application through 5.1.9-R for Android exposes the exported activity at.redbullsalzburg.android.AppMode.Default.Splash.SplashActivity, which accepts a data: URI. The target of this URI is subsequently loaded into the application's webview, thus allowing the loading of arbitrary...

6.1CVSS6.3AI score0.00649EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/06/26 12:0 a.m.37 views

CVE-2023-29459

The laola.redbull application through 5.1.9-R for Android exposes the exported activity at.redbullsalzburg.android.AppMode.Default.Splash.SplashActivity, which accepts a data: URI. The target of this URI is subsequently loaded into the application's webview, thus allowing the loading of arbitrary...

6.5AI score0.00649EPSS
Exploits2References2
CVE
CVE
added 2023/06/26 12:0 a.m.49 views

CVE-2023-29459

The CVE corresponds to the Android app laola.redbull (5.1.9-R and earlier). It exposes the exported activity at.redbullsalzburg.android.AppMode.Default.Splash.SplashActivity, which accepts a data: URI. The URI’s target is loaded into the app’s WebView, enabling loading of arbitrary content within...

6.1CVSS6.3AI score0.00649EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Storm
added 2023/06/05 12:0 a.m.321 views

FC Red Bull Salzburg App 5.1.9-R Improper Authorization

RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: FC Red Bull Salzburg App Vendor URL: https://play.google.com/store/apps/details?id=laola.redbull Type: Improper Authorization in Handler for Custom URL Scheme CWE-939 Date found: 2023-04-06...

7.1AI score0.00649EPSS
Exploits2
Rows per page
Query Builder