Search Results | AttackerKB

Show filters

Topics 543 Users 9,713

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

543 Total Results

Displaying 111-120 of 543

Attacker Value

Unknown

CVE-2014-10032

Disclosure Date: January 13, 2015 (last updated October 05, 2023)

SQL injection vulnerability in news_popup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter.

0

Attacker Value

Unknown

CVE-2014-7632

Disclosure Date: October 21, 2014 (last updated October 05, 2023)

The news revolution - bahrain (aka com.news.revolution.BH) application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7780

Disclosure Date: October 21, 2014 (last updated October 05, 2023)

The Pakistan Cricket News (aka com.conduit.app_cf18df8bdf454eb0a836e2d29886bc40.app) application 1.21.38.6504 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7753

Disclosure Date: October 21, 2014 (last updated October 05, 2023)

The Circa News (aka cir.ca) application 2.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7578

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Bieber News Now (aka com.jbnews) application 12.0.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7580

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Thailand Investor News (aka nudecreative.thaistock.set) application 1.39s for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7516

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Central East LHIN News (aka com.wCentralEastLHINNews) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7538

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The Headlines news India (aka com.dreamstep.wHEADLINESNEWSINDIA) application 0.21.13219.95110 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7550

Disclosure Date: October 20, 2014 (last updated October 05, 2023)

The basketball news & videos (aka com.basketbal.news.caesar) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0

Attacker Value

Unknown

CVE-2014-7342

Disclosure Date: October 19, 2014 (last updated October 05, 2023)

The Echo News (aka com.solo.report) 1.10 application (beta) for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

0