EUVD-2025-27071

Malicious code in bioql PyPI...

CVE-2025-26450

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...

CVE-2025-26450

In onInputEvent of IInputMethodSessionWrapper.java, there is a possible way for an untrusted app to inject key and motion events to the default IME due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction ...

PT-2025-36021

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: A flaw exists in IInputMethodSessionWrapper.java within the Android operating system. An untrusted application may inject key and motion events into the default Input Method Editor IME due ...

Windows Vista reproduction IME privilege elevation vulnerability-vulnerability warning-the black bar safety net

Today saw the news, reports the Google keyboard there is privilege elevation vulnerability. Immediately in the Vista under the test a little, found the problem really very serious, and the vulnerability is not only present in the Google keyboard, I use the pole of the Chinese input method also...