EUVD-2014-5425

Malware in sbrugna...

CVE-2025-11333 langleyfcu Online Banking System Add Customer customer_add_action.php cross site scripting

A vulnerability was identified in langleyfcu Online Banking System up to 57437e6400ce0ae240e692c24e6346b8d0c17d7a. This impacts an unknown function of the file /customeraddaction.php of the component Add Customer Page. The manipulation of the argument First Name leads to cross site scripting...

CVE-2017-5916

The America's First Federal Credit Union FCU Mobile Banking app 3.1.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2017-5916

The America's First Federal Credit Union FCU Mobile Banking app 3.1.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2017-5916

CVE-2017-5916 affects the America’s First Federal Credit Union Mobile Banking app for iOS (v3.1.0). The root cause is failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Documented...

First Tech Federal CU - Customized SSL, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application First Tech Federal CU published at the 'play' market has multiple vulnerabilities...

CVE-2014-7117

The Forest Area FCU Mobile aka com.metova.cuae.fafcu application 1.0.29 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Forest Area FCU Mobile aka com.metova.cuae.fafcu application 1.0.29 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7117

The Forest Area FCU Mobile aka com.metova.cuae.fafcu application 1.0.29 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7117

The CVE-2014-7117 entry concerns The Forest Area FCU Mobile app (com.metova.cuae.fafcu), version 1.0.29 for Android, which does not verify X.509 certificates from SSL servers. Root cause: missing certificate validation, enabling MITM attackers to spoof servers and obtain sensitive information via...

CVE-2014-7077

The Gulf Coast Educators FCU aka com.metova.cuae.gcefcu application 1.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Gulf Coast Educators FCU aka com.metova.cuae.gcefcu application 1.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7077

The Gulf Coast Educators FCU aka com.metova.cuae.gcefcu application 1.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7077

CVE-2014-7077 affects the Gulf Coast Educators FCU Android app (package com.metova.cuae.gcefcu) version 1.0.27. The root cause is failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate...

CVE-2014-5660

The TN Members 1st FCU-RDC aka com.metova.cuae.tmffcu application 1.0.28 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5538

The Westmoreland Water FCU aka air.com.creditunionhomebanking.mb115 application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5539

The Michael Baker FCU aka air.com.creditunionhomebanking.mb155 application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The TN Members 1st FCU-RDC aka com.metova.cuae.tmffcu application 1.0.28 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The Michael Baker FCU aka air.com.creditunionhomebanking.mb155 application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5538

CVE-2014-5538 affects the Westmoreland Water FCU Android app (1.2.0) and is due to the app not verifying X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. No patch or remediation details are provided in the co...