6 matches found
EUVD-2014-6721
Malware in sbrugna...
sweatshop-email.co.uk XSS vulnerability
Vulnerable URL: https://sweatshop-email.co.uk/login.php?message=%22%3E%3Csvg/onload=prompt%28/OPENBUGBOUNTY/%29%3E Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No...
CVE-2014-6843
The Sweatshop aka com.orderingapps.sweatshop application 2.96 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Sweatshop aka com.orderingapps.sweatshop application 2.96 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6843
The CVE-2014-6843 entry concerns the Sweatshop Android app (version 2.96) which does not verify X.509 certificates from SSL servers. This allows a man-in-the-middle attacker to spoof the TLS endpoint and exfiltrate sensitive data via a crafted certificate. The connected records confirm the affect...
CVE-2014-6843
The Sweatshop aka com.orderingapps.sweatshop application 2.96 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...