10 matches found
Trend Micro Direct Pass - Bypass & Persistent Vulnerability
Document Title: =============== Trend Micro Direct Pass - Bypass & Persistent Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1688 Video: https://www.youtube.com/watch?v=vXCdjK6O-Pc Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1661 Release...
Spotify - CSRF & Privilege Escalation Vulnerability
Document Title: =============== Spotify - CSRF & Privilege Escalation Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1691 Video: https://www.youtube.com/watch?v=4axUu5xUtjM Guest Article:...
Spotify - CSRF & Privilege Escalation Vulnerability
Document Title: =============== Spotify - CSRF & Privilege Escalation Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1691 Video: https://www.youtube.com/watch?v=4axUu5xUtjM Guest Article:...
Spotify (Playlists) #2 - Authentication Bypass Vulnerability
Document Title: =============== Spotify Playlists 2 - Authentication Bypass Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1663 Release Date: ============= 2016-01-18 Vulnerability Laboratory ID VL-ID: ====================================...
Spotify - CSRF Privilege Escalation Vulnerability
Document Title: =============== Spotify - CSRF Privilege Escalation Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1594 Video: https://www.youtube.com/watch?v=1qjz0rC6Zy0 Release Date: ============= 2015-09-05 Vulnerability Laboratory ID VL-ID:...
Spotify - CSRF Privilege Escalation Vulnerability
Document Title: =============== Spotify - CSRF Privilege Escalation Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1594 Video: https://www.youtube.com/watch?v=1qjz0rC6Zy0 Release Date: ============= 2015-09-04 Vulnerability Laboratory ID VL-ID:...
CVE-2014-6978
The Karim Rahal Essoulami aka com.karim.rahal.essoulami.lcxogeyuizteegxvnq application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Karim Rahal Essoulami aka com.karim.rahal.essoulami.lcxogeyuizteegxvnq application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6978
CVE-2014-6978 affects the Android app of Karim Rahal Essoulami (package com.karim.rahal.essoulami.lcxogeyuizteegxvnq), version 1.0, which does not verify X.509 certificates from SSL servers. This failure allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a cr...
CVE-2014-6978
The Karim Rahal Essoulami aka com.karim.rahal.essoulami.lcxogeyuizteegxvnq application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...