Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

CVE
CVEadded 2026/06/17 7:21 a.m.11 views

CVE-2026-28587

CVE-2026-28587 affects the MmsSmsProvider component (MmsSmsProvider.java), enabling local information disclosure via a missing permission check. Exploitation requires no user interaction and does not require additional privileges; impact is confined to information disclosure. The vulnerability is...

10CVSS5.5AI score0.00115EPSS
Exploits0References1Affected Software1
Kitploit
Kitploitadded 2023/09/19 11:30 a.m.34 views

SMShell - Send Commands And Receive Responses Over SMS From Mobile Broadband Capable Computers

PoC for an SMS-based shell. Send commands and receive responses over SMS from mobile broadband capable computers. This tool came as an insipiration during a research on eSIM security implications led by Markus Vervier, presented at Offensivecon 2023 Disclaimer This is not a complete C2 but rather...

7.5AI score
Exploits0References1
OSV
OSVadded 2022/12/16 4:15 p.m.3 views

CVE-2022-42535

In a query in MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-2247701...

5.5CVSS5.9AI score0.00151EPSS
Exploits0References1
OSV
OSVadded 2022/12/16 4:15 p.m.2 views

CVE-2022-20517

In getMessagesByPhoneNumber of MmsSmsProvider.java, there is a possible access to restricted tables due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

5.5CVSS6AI score0.00211EPSS
Exploits0References1
OSV
OSVadded 2020/03/10 8:15 p.m.3 views

CVE-2020-0060

In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10Android ID...

4.4CVSS5.9AI score0.00167EPSS
Exploits0References1
ThreatPost
ThreatPostadded 2019/01/16 2:0 p.m.16 views

VOIPO Database Exposes Millions of Texts, Call Logs

UPDATE An improperly secured database owned by a California voice-over-internet provider left millions of customer call logs, SMS message logs and credentials in plain text open for months for the taking. The database belongs to VOIPO, which provides mobile services for consumers and commercial...

0.1AI score
Exploits0References7
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.38 views

JEEMA SMS 3.2 Joomla Component Multiple Vulnerabilities

No description provided by source. JEEMA SMS 3.2 Component Joomla Multiple Vulnerabilities Release Date Bug. 28-Oct-2011 Date Added. 30-January-2010 Vendor Notification Date. Never Product. JEEMA SMS Platform. Joomla Affected versions. 3.2 Type. Commercial Price. $115.00 Attack Vector. Multiple...

7.1AI score
Exploits0
Rows per page
Query Builder