great-voices.com Cross Site Scripting vulnerability OBB-3002605

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

voices.com Cross Site Scripting vulnerability OBB-1356549

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

CVE-2014-6688

The Voices.com aka com.voices.voices application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Cross site request forgery (csrf)

The Voices.com aka com.voices.voices application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6688

The Voices.com aka com.voices.voices application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-6688

The Voices.com Android app (com.voices.voices) version 1.5 does not verify X.509 certificates from SSL/TLS servers, allowing MITM attackers to spoof servers and read sensitive data via a crafted certificate. According to CVE-2014-6688 data, this yields a Medium impact with partial confidentiality...