274 matches found
Bluetooth Photo-File Share v2.1 - Multiple Vulnerabilities
Document Title: =============== Bluetooth Photo-File Share v2.1 - Multiple Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1270 Release Date: ============= 2014-05-30 Vulnerability Laboratory ID VL-ID: ====================================...
Student Hacks Apple Passbook App to Get Free Flight Boarding Passes
Is Air Travel expensive for You?? Of course it’s costly for Common people. But, hackers have found a way out of it too. If you have an iPhone then there is no need to buy airline tickets, as a simple iPhone hack can fool any modern airport and get you a seat in first class for free. Anthony...
Encrypted Chat Service 'Cryptocat' released iOS app
http://end-to-end%20encryption%2C%20nsa%2C%20cryptocat%2C%20ios%2C%20apple%20app%20store%2C%20download%20app%2C%20secure%20chat%2C%20off-the-record%20messaging%2C...
Yahoo!: HTML Injection on flickr screename using IOS App
Thank you for your submission to the Yahoo Bug Bounty program. We were able to reproduce the issue you reported and have implemented appropriate fixes. We appreciate your adherence to responsible disclosure guidelines and look forward to your future participation in the program...
Starbucks Patches Vulnerable iOS App
Starbucks has patched a vulnerability in its iOS app that was found last week spilling user data, including usernames and passwords, by adding what it’s called an “additional safeguard measure” to protect its customers. While it’s a relatively quick turnaround for the company – it only took about...
Starbucks' iOS app storing user credentials in plain text
Watch out, coffee drinkers. If you are one of those 10 million Starbucks customers, who purchases drinks and food directly from their Smartphones, this news is for you! If you use Starbucks’ official iOS app, you should know that the company is not encrypting any of your information, including yo...
'Dark Mail Alliance', Future of surveillance proof email technology
Yesterday I learned about 'Dark Mail Alliance', where Lavabit, reportedly an email provider for NSA leaker Edward Snowden and Silent Circle comes together to create a surveillance-proof email technology. Ladar Levison at Lavabit and Silent Circle CEO Mike Janke, Founders of two e-mail services th...
Stem Innovation - IZON Hard-Coded Credentials
Stem Innovation - IZON Hard-Coded Credentials Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’ utilizes numerous hard-coded credentials within it...
'LinkedIn Intro' iOS app can read your emails in iPhone
None...
SimpleTransfer 2.2.1 - Command Injection Vulnerabilities
Title: ====== SimpleTransfer 2.2.1 - Command Injection Vulnerabilities Date: ===== 2013-05-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=937 VL-ID: ===== 937 Common Vulnerability Scoring System: ==================================== 5.6 Introduction: =============...
Wifi Album v1.47 iOS - Command Injection Vulnerability
Title: ====== Wifi Album v1.47 iOS - Command Injection Vulnerability Date: ===== 2013-04-25 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=935 VL-ID: ===== 935 Common Vulnerability Scoring System: ==================================== 5.6 Introduction: ============= WiF...
SimpleTransfer 2.2.1 - Command Injection
SimpleTransfer 2.2.1 - Command Injection Title: ====== SimpleTransfer 2.2.1 - Command Injection Vulnerabilities Date: ===== 2013-05-03 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=937 VL-ID: ===== 937 Common Vulnerability Scoring System:...
Wireless Disk PRO 2.3 LFI / XSS / Command Injection
Title: ====== Wireless Disk PRO v2.3 iOS - Multiple Web Vulnerabilities Date: ===== 2013-02-26 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=883 VL-ID: ===== 883 Common Vulnerability Scoring System: ==================================== 6.2 Introduction: =============...
dTunes 2.72 (Filename Processing) Local Format String PoC
No description provided by source. !/usr/bin/perl dTunes 2.72 local format string PoC filename processing TheLeader, GSOG2009 st0p hotmail sp4m com ShoutZ to the wonderful ppl over at forums.hacking.org.il = Copy the file over to your device on /var/mobile/Library/Downloads/ and attempt playing...