257651
|
- |
|
yell
|
yell_local_search
|
The Yell Local Search (aka com.yell.launcher2) application 4.2.1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtai…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5887
|
2014-09-23 02:37 |
2014-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257652
|
- |
|
pdc
|
disaster_alert
|
The Disaster Alert (aka disasterAlert.PDC) application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensit…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5885
|
2014-09-23 02:36 |
2014-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257653
|
- |
|
ceskatelevize
|
ivysilani_ceske_televize
|
The iVysilani ceske televize (aka cz.motion.ivysilani) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and o…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5886
|
2014-09-23 02:36 |
2014-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257654
|
- |
|
1und1
|
1\&1_online_storage
|
The 1&1 Online Storage (aka de.einsundeins.smartdrive) application 5.0.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers an…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5884
|
2014-09-23 02:35 |
2014-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257655
|
- |
|
7-eleven
|
7-eleven
|
The 7-ELEVEN (aka ecowork.seven) application 2.08.000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive i…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5883
|
2014-09-23 02:34 |
2014-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257656
|
- |
|
applica
|
homoo_ijiri
|
The Homoo Ijiri (aka jp.co.applica) application 3.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive inf…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5882
|
2014-09-23 02:33 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257657
|
- |
|
tvguide_project
|
tvguide
|
The tvguide (aka kenneth.tvguide) application 1.9.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive in…
|
CWE-310
Cryptographic Issues
|
CVE-2014-5879
|
2014-09-23 02:31 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257658
|
- |
|
bump_project
|
bump
|
The Bump application for Android does not properly handle implicit intents, which allows attackers to obtain sensitive owner-name information via a crafted application.
|
CWE-200
Information Exposure
|
CVE-2014-5320
|
2014-09-23 00:29 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257659
|
- |
|
huge-it
|
image_gallery
|
SQL injection vulnerability in the editgallery function in admin/gallery_func.php in the Huge-IT Image Gallery plugin 1.0.1 for WordPress allows remote authenticated users to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2014-7153
|
2014-09-23 00:17 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257660
|
- |
|
cobham
|
aviator_700d aviator_700e
|
Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code…
|
CWE-255
Credentials Management
|
CVE-2014-2942
|
2014-09-22 23:43 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|