WordPress The Launcher theme <= 1.3.2 - Authenticated Arbitrary Plugin Activation/Deactivation vulnerability

Authenticated Arbitrary Plugin Activation/Deactivation vulnerability discovered by Ex.Mi Patchstack in WordPress The Launcher theme versions = 1.3.2. Solution Deactivate and delete. The vendor ignores the vulnerability reports, avoids any conversation...

WordPress The Launcher theme <= 1.3.2 - Cross-Site Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation

Cross-Site Request Forgery CSRF leading to Arbitrary Plugin Activation/Deactivation discovered by Ex.Mi Patchstack in WordPress The Launcher theme versions = 1.3.2. Solution Deactivate and delete. The vendor ignores the vulnerability reports avoids any conversation...

WordPress The Launcher theme <= 1.3.2 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Lenon Leite Patchstask Red Team project in WordPress The Launcher theme versions = 1.3.2. This theme uses a vulnerable piece of code related to previously identified vulnerability - CVE-2021-39317. Solution Deactivate and delete. The vendor ignore...

KakaoHome - launcher, theme - Customized SSL, Exported ContentProvider vulnerabilities

HackApp vulnerability scanner discovered that application KakaoHome - launcher, theme published at the 'play' market has multiple vulnerabilities...

GO Launcher-Theme,Wallpaper - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application GO Launcher-Theme,Wallpaper published at the 'play' market has multiple vulnerabilities...

J7 Galaxy Launcher and Theme - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application J7 Galaxy Launcher and Theme published at the 'play' market has multiple vulnerabilities...

New Year GO Launcher Theme - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application New Year GO Launcher Theme published at the 'play' market has multiple vulnerabilities...

Quality GO Launcher Theme - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Quality GO Launcher Theme published at the 'play' market has multiple vulnerabilities...

Next Launcher Theme 3D Magic - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Next Launcher Theme 3D Magic published at the 'play' market has multiple vulnerabilities...

B.S.Love Next Launcher Theme - Customized SSL, Dangerous filesystem permissions, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application B.S.Love Next Launcher Theme published at the 'play' market has multiple vulnerabilities...

Sketch CM Launcher Theme - External URLs, Possible privilege escalation, Suspicious files vulnerabilities

HackApp vulnerability scanner discovered that application Sketch CM Launcher Theme published at the 'play' market has multiple vulnerabilities...