21 matches found
EUVD-2014-1900
Malware in sbrugna...
EUVD-2014-1901
Malware in sbrugna...
CVE-2017-16814
A Directory Traversal issue was discovered in the Foxit MobilePDF app before 6.1 for iOS. This occurs by abusing the URL + escape character during a Wi-Fi transfer, which could be exploited by attackers to bypass intended restrictions on local application files...
USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability
No description provided by source. Document Title: =============== USB&WiFi Flash Drive 1.3 iOS - Code Execution Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1316 Release Date: ============= 2014-09-15 Vulnerability Laboratory ID VL-ID:...
Video WiFi Transfer 1.01 - Directory Traversal
Document Title: =============== Video WiFi Transfer 1.01 - Directory Traversal Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1288 Release Date: ============= 2014-08-02 Vulnerability Laboratory ID VL-ID: ==================================...
Photo WiFi Transfer 1.01 Directory Traversal
Document Title: =============== Photo WiFi Transfer 1.01 - Directory Traversal Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1285 Release Date: ============= 2014-07-31 Vulnerability Laboratory ID VL-ID: ==================================...
Video WiFi Transfer 1.01 - Directory Traversal Vulnerability
Document Title: =============== Video WiFi Transfer 1.01 - Directory Traversal Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1288 Release Date: ============= 2014-08-01 Vulnerability Laboratory ID VL-ID: ==================================...
AllReader 1.0 Local File Inclusion
Document Title: =============== AllReader v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1269 Release Date: ============= 2014-05-26 Vulnerability Laboratory ID VL-ID: ==================================== 1269...
AllReader v1.0 iOS - Multiple Web Vulnerabilities
Document Title: =============== AllReader v1.0 iOS - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1269 Release Date: ============= 2014-05-25 Vulnerability Laboratory ID VL-ID: ==================================== 1269...
iThoughtsHD任意文件上传漏洞
CVE ID:CVE-2014-1827 iThoughtsHD是一款ios应用,属于思维导图软件。 iPad设备上使用的iThoughtsHD app 4.19 for iOS,在启用了WiFi Transfer功能后,可使远程攻击者通过上传诸如.html%00.txt的文件,即在扩展名后加%00序列来达到上传任意文件的目的。 0 iThoughtsHD iThoughtsHD 4.19 目前厂商还没有提供补丁或者升级程序: www.ithoughts.co.uk/...
CVE-2014-1827
The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file...
CVE-2014-1826
Cross-site scripting XSS vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name...
Design/Logic Flaw
The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file...
Cross site scripting
Cross-site scripting XSS vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name...
CVE-2014-1826
Cross-site scripting XSS vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name...
CVE-2014-1826
The CVE-2014-1826 entry concerns iThoughtsHD for iOS (iPad) version 4.19, where the WiFi Transfer feature allows cross-site scripting via a crafted map name. The vulnerability is an XSS in the map name handling, enabling remote attackers to inject arbitrary web script or HTML when the map name is...
CVE-2014-1827
The CVE-2014-1827 entry affects iThoughtsHD 4.19 for iOS on iPad, where enabling WiFi Transfer allows remote upload of arbitrary files by exploiting a null-byte (%00) injection after a dangerous extension (demonstrated with .html%00.txt). Affected component is the web upload interface; root cause...
CVE-2014-1827
The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file...
eFile Wifi Transfer Manager 1.0 - Multiple Vulnerabilities
eFile Wifi Transfer Manager 1.0 - Multiple Vulnerabilities Title: ====== eFile Wifi Transfer Manager 1.0 iOS - Multiple Vulnerabilities Date: ===== 2013-06-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=982 VL-ID: ===== 982 Common Vulnerability Scoring System:...
Transferable Remote 1.1 XSS / LFI / Command Injection
Title: ====== Transferable Remote v1.1 iPad iPhone - Multiple Web Vulnerabilities Date: ===== 2013-02-09 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=863 VL-ID: ===== 863 Common Vulnerability Scoring System: ==================================== 8.5 Introduction:...