EUVD-2023-1214

Malicious code in bioql PyPI...

PT-2025-6151 · Meta · Imessenger

Name of the Vulnerable Software and Affected Versions: WP SEO Plugin affected versions not specified Description: The issue concerns a SQL injection in the WP SEO Plugin. There is also mention of a Denial of Service DoS vulnerability affecting Messenger Group Calls on iOS devices. Recommendations...

Missing Authorization

matrix-js-sdk is vulnerable to Missing Authorization. The vulnerability exists because a user can join a MSC3401 group call without notifying other users, which allows an attacker to perform invisible eavesdropping in group calls...

CVE-2023-29529

matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker...

CVE-2023-29529 matrix-js-sdk vulnerable to invisible eavesdropping in group calls

matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker...

CVE-2023-29529 matrix-js-sdk vulnerable to invisible eavesdropping in group calls

matrix-js-sdk is the Matrix Client-Server SDK for JavaScript and TypeScript. An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker...

GHSA-6G67-Q39G-R79Q matrix-js-sdk vulnerable to invisible eavesdropping in group calls

Impact An attacker present in a room where an MSC3401 group call is taking place can eavesdrop on the video and audio of participants using matrix-js-sdk, without their knowledge. To affected matrix-js-sdk users, the attacker will not appear to be participating in the call. This attack is possibl...

The vulnerability of FaceTime video/audio call technology in operating systems macOS and iOS allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of FaceTime video/audio calls in macOS and iOS operating systems lies in the fact that the call operations go beyond the buffer in memory during group calls. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

Popcorn Buzz: Free Group Calls - Corrupted files, External URLs, KeyStore usage vulnerabilities

HackApp vulnerability scanner discovered that application Popcorn Buzz: Free Group Calls published at the 'play' market has multiple vulnerabilities...