45 matches found
Xxe
The DealSide Institutional aka com.magzter.dealsideinstitutional application 3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7448
The CVE-2014-7448 entry applies to the DealSide Institutional Android app (version 3.1) and is caused by not verifying X.509 certificates from SSL servers, enabling potential MITM attackers to spoof servers and access sensitive information via crafted certificates. Affected software: DealSide Ins...
CVE-2014-7448
The DealSide Institutional aka com.magzter.dealsideinstitutional application 3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Development Site Professional Liberal - Company Institutional SQL Injection Vulnerability
No description provided by source...
Development Site Professional Liberal - Company Institutional SQL Injection
Exploit Title: Development Site Professional Liberal - Company Institutional business.php SQL Injection Vulnerability Date: 12-6-2010 Author: IQ-Spy Vendor url : http://www.mformula.com.br Tested on: Windows Xp Sp2 Dork : inurl:business.php?catid=4 Exploit : http://localhost/business.php?catid=4'...