EUVD-2019-6373

Malware in sbrugna...

CVE-2019-15372

The Hisense F17 Android device with a build fingerprint of Hisense/F174G/HS6739MT:8.1.0/O11019/HisenseF174G00S01:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify...

CVE-2019-15372

The Hisense F17 Android device with a build fingerprint of Hisense/F174G/HS6739MT:8.1.0/O11019/HisenseF174G00S01:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify...

Authorization

The Hisense F17 Android device with a build fingerprint of Hisense/F174G/HS6739MT:8.1.0/O11019/HisenseF174G00S01:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify...

CVE-2019-15372

The CVE-2019-15372 entry concerns the Hisense F17 Android device, where a pre-installed app (package: com.mediatek.wfo.impl, versionCode 27, versionName 8.1.0) exposes an interface that lets any co-located app modify a system property without proper authorization. This is a local vulnerability wi...

CVE-2019-15372

The Hisense F17 Android device with a build fingerprint of Hisense/F174G/HS6739MT:8.1.0/O11019/HisenseF174G00S01:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify...

WordPress Plugin N-Media Website Contact Form with File Upload 1.3.4 - Arbitrary File Upload (2)

WordPress Plugin N-Media Website Contact Form with File Upload 1.3.4 - Arbitrary File Upload 2 !/bin/bash Exploit Title : Wordpress N-Media Website Contact Form with File Upload 1.3.4 Google Dork : inurl:"/uploads/contactfiles/" Exploit Author : Claudio Viviani Vulnerability discovered by : Claud...