1509 matches found
EUVD-2005-0244
Malware in sbrugna...
EUVD-2000-0047
Malware in sbrugna...
EUVD-2013-4785
Malware in sbrugna...
EUVD-2002-2339
Malware in sbrugna...
EUVD-2007-0765
Malware in sbrugna...
EUVD-2012-2631
Malware in sbrugna...
EUVD-2012-2633
Malware in sbrugna...
EUVD-2013-7065
Malware in sbrugna...
EUVD-2013-6284
Malware in sbrugna...
EUVD-2025-26966
Malicious code in bioql PyPI...
EUVD-2025-26005
Malicious code in bioql PyPI...
EUVD-2025-5664
Malicious code in bioql PyPI...
EUVD-2024-52111
Malicious code in bioql PyPI...
Jeffrey Epstein’s Yahoo Inbox Revealed
Plus: ICE deploys secretive phone surveillance tech, officials warn of Chinese surveillance tools in US highway infrastructure, and more...
CVE-2025-41408
Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for Android versions prior to 14.15.0 allows a remote unauthenticated attacker may lead a user to access an arbitrary website on the vulnerable App. As a result, the user may become a victim of a phishing attac...
"Yahoo! Shopping" App for Android fails to restrict custom URL schemes properly
Overview "Yahoo! Shopping" App for Android provided by LY Corporation contains the following vulnerability. Improper authorization in handler for custom URL scheme CWE-939 - CVE-2025-41408 Shiga Takuma of BroadBand Security, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the...
CVE-2025-41408
Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for Android versions prior to 14.15.0 allows a remote unauthenticated attacker may lead a user to access an arbitrary website on the vulnerable App. As a result, the user may become a victim of a phishing attac...
CVE-2025-41408
Summary: The vulnerability CVE-2025-41408 affects the LY/Yahoo! Shopping App for Android (pre-14.15.0). The issue is improper authorization in the handler for the app’s custom URL scheme (CWE-939), allowing a remote, unauthenticated attacker to redirect a user to an arbitrary website, enabling ph...
CVE-2025-41408
Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for Android versions prior to 14.15.0 allows a remote unauthenticated attacker may lead a user to access an arbitrary website on the vulnerable App. As a result, the user may become a victim of a phishing attac...
PT-2025-36110
Name of the Vulnerable Software and Affected Versions: Yahoo! Shopping App for Android versions prior to 14.15.0 Description: Improper authorization in the handler for a custom URL scheme in the Yahoo! Shopping App for Android may allow a remote, unauthenticated attacker to redirect a user to an...