13 matches found
Nextcloud: IDOR on ██████ via direct photo URL leads to unauthorized access to deleted and other users' photos
Summary: An Insecure Direct Object Reference IDOR vulnerability exists in the application that allows unauthorized access to photos belonging to other users. The application does not properly validate whether the logged-in user is authorized to access a photo when accessing it via direct URL. Thi...
CVE-2022-29667
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos...
How to Recover Deleted Photos from an iPhone
Accidentally deleted some photos from your iPhone? You’re definitely not alone; most iPhone users have done it at…...
CVE-2018-9379
In multiple functions of MiniThumbFile.java, there is a possible way to view the thumbnails of deleted photos due to a confused deputy. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...
Google Pixel和Google Nexus 代码问题漏洞
Google Pixel and Google Nexus are both a smartphone from the American company Google Google. Google Pixel and Google Nexus have a security vulnerability. An attacker exploiting the vulnerability can view thumbnails of deleted photos...
Apple iOS and iPadOS Security Vulnerabilities
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 17.4, iPadOS version 17.4, which stems from a shake undo feature that...
Apple iOS 和 iPadOS 安全漏洞
Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 16.5 and iPadOS version 16.5, which stems from the fact that shake un...
CVE-2022-32943
The issue was addressed with improved bounds checks. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Shake-to-undo may allow a deleted photo to be re-surfaced without authentication...
CVE-2022-29667
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos...
CVE-2022-29667
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via /admin.php/pic/admin/pic/hy. This vulnerability is exploited via restoring deleted photos...
CVE-2018-3987
An exploitable information disclosure vulnerability exists in the 'Secret Chats' functionality of Rakuten Viber on Android 9.3.0.6. The 'Secret Chats' functionality allows a user to delete all traces of a chat either by using a time trigger or by direct request. There is a bug in this functionali...
PT-2019-10741 · Telegram · Telegram Android
Name of the Vulnerable Software and Affected Versions: Telegram Android messaging application version 4.9.0 Description: An information disclosure issue exists in the "Secret Chats" functionality, which allows users to delete chat traces. However, a bug leaves behind photos taken and shared in...
Hack found iPhone X new vulnerabilities: can be get the device deleted pictures-vulnerability warning-the black bar safety net
According to Forbes 11 May 14 reported that, in Tokyo, Japan Day held at the Mobile Pwn2Own competition, two members of the hacker Richard Zhu and Amat Cama team up to attack a computer running Apple's latest iOS 12.1 system of the iPhone X, and successfully acquired a piece of already deleted...