Lucene search
K

4 matches found

NVD
NVD
added 2024/12/17 6:15 a.m.20 views

CVE-2024-54125

Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android versions prior to 4.0.0 allows an attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack...

3.3CVSS0.00161EPSS
Exploits0References2
CVE
CVE
added 2024/12/17 5:36 a.m.45 views

CVE-2024-54125

The CVE-2024-54125 entry relates to the Shonen Jump+ Android app prior to version 4.0.0. The issue is improper restriction of Custom URL Schemes (CWE-939), allowing a malicious actor to direct a user to arbitrary websites through the app, which can lead to phishing. Connected sources confirm the ...

3.3CVSS6.9AI score0.00161EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/17 5:36 a.m.15 views

CVE-2024-54125

Improper authorization in handler for custom URL scheme issue in "Shonen Jump+" App for Android versions prior to 4.0.0 allows an attacker to lead a user to access an arbitrary website via the vulnerable App. As a result, the user may become a victim of a phishing attack...

3.3CVSS0.00161EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2024/12/16 12:0 a.m.10 views

JVN#08430039: "Shonen Jump+" App for Android fails to restrict custom URL schemes properly

"Shonen Jump+" App for Android provided by SHUEISHA INC. provides the function to access a requested URL using Custom URL Scheme. The App does not restrict access to the function properly CWE-939 which may be exploited to direct the App to access any sites. Impact A remote attacker may lead a use...

3.3CVSS7AI score0.00161EPSS
Exploits0
Rows per page
Query Builder