appslova.com XSS vulnerability

Open Bug Bounty ID: OBB-593729 Description| Value ---|--- Affected Website:| appslova.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

OnePlus X and One device security bypass vulnerability

The OnePlusX and One are both smartphones from China's OnePlus Technology OnePlus.OxygenOS and HydrogenOS are the operating systems that come with them. A security bypass vulnerability exists in OnePlusX and One. An attacker could use this vulnerability to launch further attacks by performing a...

OnePlus OTA One/X Crossover Vulnerability(CVE-2017-8851)

Products OnePlus X OnePlus One Vulnerable Version All OnePlus OxygenOS & HydrogenOS OTAs Technical Details Due to lenient updater-script on the OnePlus One & X’s OTA images see below, the fact both products use the same OTA verification keys, and the fact both products share the same...

Spoofing

An issue was discovered on OnePlus One and X devices. Due to a lenient updater-script on the OnePlus One and X OTA images, the fact that both products use the same OTA verification keys, and the fact that both products share the same 'ro.build.product' system property, attackers can install OTAs ...

OnePlus OxygenOS Now Available for Download

OnePlus One users might be waiting for the new Lollipop based ROM for their smartphones. The wait is over as the popular Chinese smartphone maker OnePlus has finally released its own custom ROM -- OnePlus OxygenOS, which is based on Android 5.0 Lollipop. Last month, the OnePlus announced the...