|
257021
|
- |
|
tvguide_project
|
tvguide
|
The tvguide (aka kenneth.tvguide) application 1.9.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive in…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5879
|
2014-09-23 02:31 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257022
|
- |
|
bump_project
|
bump
|
The Bump application for Android does not properly handle implicit intents, which allows attackers to obtain sensitive owner-name information via a crafted application.
|
CWE-200
Information Exposure
|
CVE-2014-5320
|
2014-09-23 00:29 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257023
|
- |
|
huge-it
|
image_gallery
|
SQL injection vulnerability in the editgallery function in admin/gallery_func.php in the Huge-IT Image Gallery plugin 1.0.1 for WordPress allows remote authenticated users to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2014-7153
|
2014-09-23 00:17 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257024
|
- |
|
cobham
|
aviator_700d
aviator_700e
|
Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code…
|
CWE-255
Credentials Management
|
CVE-2014-2942
|
2014-09-22 23:43 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257025
|
- |
|
filemaker
|
filemaker_pro
filemaker_pro_advanced
|
FileMaker Pro before 13 and Pro Advanced before 13 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via …
|
CWE-310
Cryptographic Issues
|
CVE-2014-5321
|
2014-09-22 22:52 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257026
|
- |
|
piwik
|
piwik_mobile_2
|
The Piwik Mobile 2 (aka org.piwik.mobile2) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sens…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5871
|
2014-09-22 10:08 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257027
|
- |
|
safenet-inc
|
safenetmobile_pass
|
The SafeNetMobile Pass (aka securecomputing.devices.android.controller) application 8.3.7.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers …
|
CWE-310
Cryptographic Issues
|
CVE-2014-5872
|
2014-09-22 10:07 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257028
|
- |
|
sears
|
sears
|
The Sears (aka com.sears.android) application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive inf…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5873
|
2014-09-22 10:07 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257029
|
- |
|
splashid
|
splashid
|
The SplashID (aka com.splashidandroid) application 7.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitiv…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5874
|
2014-09-22 10:06 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257030
|
- |
|
sylpheo
|
sylphone
|
The Sylphone (aka com.sylpheo.prospectosyl) application 5.3.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5875
|
2014-09-22 10:05 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
