EUVD-2014-5561

Malware in sbrugna...

MAL-2022-501 Malicious code in @picsart/fetlife-assets (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 3b89c5e5ac1f2e1f4f3c98aeafdb9a87eb4afaacc99d050f351271bbed07a983 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Picsart: User account compromised authentication bypass via oauth token impersonation

OAuth token impersonation is actually a bug when 3rd party company app or malicious app collects the access token of the same user then that company can access to user account on PicsArt. The condition is that the user needs to authorized both PicsArt and malicious app with same Facebook or Googl...

PicsArt Photo Studio - Dangerous filesystem permissions, Exported ContentProvider, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application PicsArt Photo Studio published at the 'play' market has multiple vulnerabilities...

PicsArt Kids Drawing Coloring - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application PicsArt Kids Drawing Coloring published at the 'play' market has multiple vulnerabilities...

PicsArt Photo Studio missed SSL certificate check

No description provided...

Insecure management of login credentials in PicsArt Photo Studio for Android [STIC-2014-0426]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Fundacion Dr. Manuel Sadosky - Programa STIC Advisory http://www.fundacionsadosky.org.ar Insecure management of login credentials in PicsArt Photo Studio for Android 1. Advisory Information Title: Insecure management of login credentials in PicsArt...

PicsArt Photo Studio For Android Insecure Management Vulnerability

PicsArt Photo Studio for Android fails to properly validate SSL certificates from the server. Insecure management of login credentials in PicsArt Photo Studio for Android 1. Advisory Information Title: Insecure management of login credentials in PicsArt Photo Studio for Android Advisory ID:...

PicsArt Photo Studio For Android Insecure Management

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Fundación Dr. Manuel Sadosky - Programa STIC Advisory http://www.fundacionsadosky.org.ar Insecure management of login credentials in PicsArt Photo Studio for Android 1. Advisory Information Title: Insecure management of login credentials in PicsArt...

CVE-2014-5674

The PicsArt - Photo Studio aka com.picsart.studio application 4.5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Information disclosure

The PicsArt - Photo Studio aka com.picsart.studio application 4.5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-5674

CVE-2014-5674 affects the PicsArt Photo Studio Android app (com.picsart.studio), up to version 4.5.5, by not validating SSL certificates. The vulnerability enables MITM attackers to spoof servers and access sensitive data. Public sources describe the root cause as improper certificate validation,...

CVE-2014-5674

The PicsArt - Photo Studio aka com.picsart.studio application 4.5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...