183 matches found
EUVD-2023-51506
Malicious code in bioql PyPI...
EUVD-2025-6393
Malicious code in bioql PyPI...
EUVD-2021-8245
Malicious code in bioql PyPI...
EUVD-2025-5862
Malicious code in bioql PyPI...
EUVD-2025-2177
Malicious code in bioql PyPI...
EUVD-2021-29097
Malicious code in bioql PyPI...
CVE-2025-8393 Dreame Technology iOS and Android Mobile Applications Improper Certificate Validation
A TLS vulnerability exists in the phone application used to manage a connected device. The phone application accepts self-signed certificates when establishing TLS communication which may result in man-in-the-middle attacks on untrusted networks. Captured communications may include user credentia...
CVE-2025-36106 IBM Cognos Analytics Mobile (iOS) information disclosure
IBM Cognos Analytics Mobile iOS 1.1.0 through 1.1.22 could allow malicious actors to view and modify information coming to and from the application which could then be used to access confidential information on the device or network by using a the deprecated or misconfigured AFNetworking library ...
CVE-2025-41458 Insecure data storage vulnerability in Two App Studio Journey v5.5.9 for iOS
Unencrypted storage in the database in Two App Studio Journey v5.5.9 for iOS allows local attackers to extract sensitive data via direct access to the app’s filesystem...
CVE-2025-45156
Splashin iOS v2.0 fails to enforce server-side interval restrictions for location updates for free-tier users...
PT-2025-30063 · Splashin · Splashin
Name of the Vulnerable Software and Affected Versions: Splashin iOS version 2.0 Description: The Splashin iOS application version 2.0 does not enforce server-side interval restrictions for location updates for free-tier users. Recommendations: Update to a newer version that contains a fix for thi...
AirKeyboard iOS App 1.0.5 - Remote Input Injection
Exploit Title: AirKeyboard iOS App 1.0.5 - Remote Input Injection Date: 2025-06-13 Exploit Author: Chokri Hammedi Vendor Homepage: https://airkeyboardapp.com Software Link: https://apps.apple.com/us/app/air-keyboard/id6463187929 Version: Version 1.0.5 Tested on: iOS 18.5 with AirKeyboard app '''...
CVE-2025-29627
An issue in KeeperChat IOS Application v.5.8.8 allows a physically proximate attacker to escalate privileges via the Biometric Authentication Module...
CVE-2025-29627
An issue in KeeperChat IOS Application v.5.8.8 allows a physically proximate attacker to escalate privileges via the Biometric Authentication Module...
PT-2025-24541 · Unknown · Keeperchat
Name of the Vulnerable Software and Affected Versions: KeeperChat IOS Application version 5.8.8 Description: An issue in the KeeperChat IOS Application allows a physically proximate attacker to escalate privileges via the Biometric Authentication Module. Recommendations: For KeeperChat IOS...
CVE-2025-29627
An issue in KeeperChat IOS Application v.5.8.8 allows a physically proximate attacker to escalate privileges via the Biometric Authentication Module...
CVE-2025-29627
CVE-2025-29627 affects KeeperChat iOS App, v5.8.8, with a vulnerability in the Biometric Authentication Module that could allow a physically proximate attacker to escalate privileges. The public records describe the affected component as KeeperChat IOS Application and point to privilege escalatio...
CVE-2024-12420
The The WPMobile.App — Android and iOS Mobile Application plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 11.52. This is due to the software allowing users to execute an action that does not properly validate a value before running...
CVE-2024-56968
An issue in Shenzhen Intellirocks Tech Co. Ltd Govee Home iOS 6.5.01 allows attackers to access sensitive user information via supplying a crafted payload...
CVE-2024-56951
An issue in Hangzhou Bobo Technology Co Ltd UU Game Booster iOS 10.6.13 allows attackers to access sensitive user information via supplying a crafted link...