CVE-2021-0381

In updateNotifications of DeviceStorageMonitorService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

SUSE CVE-2014-1507

Directory traversal vulnerability in the DeviceStorage API in Mozilla FirefoxOS before 1.2.2 allows attackers to bypass the media sandbox protection mechanism, and read or modify arbitrary files, via a crafted application that uses a relative pathname for a DeviceStorageFile object...

Samsung Dialer 安全漏洞

Samsung Dialer is a dialer from Samsung South Korea. A security vulnerability exists in versions prior to Samsung Dialer 12.7.05.24, which stems from a problem with the software's storage of device information, allowing an attacker to exploit the vulnerability to gain access to Samsung account ID...

Workspace App for iOS 21.4 Intermittently Crashes While Accessing Device Storage Option in Store Settings

When accessing the "Device Storage" option in Store Settings within Citrix Workspace App for iOS 21.4, you may encounter intermittent crashes of the application...

CVE-2021-0381

In updateNotifications of DeviceStorageMonitorService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2021-25648

Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage...

Design/Logic Flaw

Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage...

CVE-2021-25648

Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage...

PT-2021-16726 · Unknown · Testes De Codigo

Name of the Vulnerable Software and Affected Versions: Testes de Codigo versions 11.4 and prior Description: The issue allows an attacker to gain access to the administrative interface and premium features by tampering with the boolean value of parameters isAdmin and isPremium located on device...

Testesdecodigogratis Testes de Codigo 安全漏洞

Testesdecodigogratis Testes de Codigo is a mobile application from Testesdecodigogratis in Portugal that provides users with driver's license learning. A security vulnerability exists in Testes de Codigo 11.4 and prior that allows an attacker to tamper with the Boolean values of the parameters...

CVE-2013-5654

Vulnerability in YingZhi Python Programming Language v1.9 allows arbitrary anonymous uploads to the phone's storage...

CVE-2018-3986

An exploitable information disclosure vulnerability exists in the "Secret Chats" functionality of the Telegram Android messaging application version 4.9.0. The "Secret Chats" functionality allows a user to delete all traces of a chat, either by using a time trigger or by direct request. There is ...

Personal Address Book 2.0 File Upload

TITLE: Unauthenticated Remote File Upload via HTTP for Personal Address Book 2.0 on iOS Date: 8/1/2013 Author: Larry W. Cashdollar, @larry0 Download: https://itunes.apple.com/us/app/personal-address-book-helpful/id490328390?mt=8 http://www.tayutec.com/indexen.html Description: "Features: To creat...