|
256761
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows attackers to cause a denial of service.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12805
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256762
|
6.5 |
MEDIUM
Network
|
entropymine
|
imageworsener
|
The iwgif_init_screen function in imagew-gif.c:510 in ImageWorsener 1.3.2 allows remote attackers to cause a denial of service (hmemory exhaustion) via a crafted file.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12804
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256763
|
6.1 |
MEDIUM
Network
|
metinfo
|
metinfo
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in Metinfo 5.3.18 allows remote attackers to inject arbitrary web script or HTML via the (1) class1 parameter or the (2) anyid p…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12788
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256764
|
7.5 |
HIGH
Network
|
psafe
|
dfndr_security
|
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access thi…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13108
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256765
|
7.5 |
HIGH
Network
|
liveme
|
liveme
|
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13107
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256766
|
7.5 |
HIGH
Network
|
cmcm
|
cm_launcher_3d
|
Cheetahmobile CM Launcher 3D - Theme, wallpaper, Secure, Efficient, 5.0.3, 2017-09-19, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13106
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256767
|
5.9 |
MEDIUM
Network
|
hisecuritylab
|
virus_cleaner
|
Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, 2017-09-13, Android application accepts all SSL certificates during SSL communication. This opens the application up to a man-in-the-middle…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-13105
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256768
|
7.5 |
HIGH
Network
|
uber
|
ubereats
|
Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13104
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256769
|
7.5 |
HIGH
Network
|
gameloft
|
asphalt_xtreme
|
Gameloft Asphalt Xtreme: Offroad Rally Racing, 1.6.0, 2017-08-13, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13102
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256770
|
7.5 |
HIGH
Network
|
tiktok
|
musical.ly
|
Musical.ly Inc., musical.ly - your video social network, 6.1.6, 2017-10-03, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access …
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13101
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
