|
256241
|
5.9 |
MEDIUM
Network
|
forex
|
tradeking_forex
|
The TradeKing Forex for iPhone app 1.2.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a …
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5913
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256242
|
5.9 |
MEDIUM
Network
|
forex
|
forextrader
|
The FOREX.com FOREXTrader for iPhone app 2.9.12 through 2.9.14 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensit…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5912
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256243
|
5.9 |
MEDIUM
Network
|
banco_santander_mexico_sa
|
supermovil
|
The Banco Santander Mexico SA Supermovil app 3.5 through 3.7 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitiv…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5911
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256244
|
5.9 |
MEDIUM
Network
|
electronic_funds_source_llc
|
efs_mobile_driver_source
|
The Electronic Funds Source (EFS) Mobile Driver Source app 2.5 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensit…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5909
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256245
|
5.9 |
MEDIUM
Network
|
great_southern_bank
|
great_southern_mobile_banking
|
The Great Southern Bank Great Southern Mobile Banking app before 4.0.4 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtai…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5907
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256246
|
5.9 |
MEDIUM
Network
|
everyday_health_inc
|
diabetes_in_check\
|
The Everyday Health Diabetes in Check: Blood Glucose & Carb Tracker app 3.4.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers an…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5906
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256247
|
5.9 |
MEDIUM
Network
|
dollar_bank
|
dollar_bank_mobile
|
The Dollar Bank Mobile app 2.6.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted …
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5905
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256248
|
5.9 |
MEDIUM
Network
|
payquicker
|
mypayquicker
|
The PayQuicker app 1.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certific…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5902
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256249
|
5.9 |
MEDIUM
Network
|
state_bank_of_india
|
state_bank_anywhere
|
The State Bank of India State Bank Anywhere app 5.1.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive infor…
|
CWE-295
Improper Certificate Validation
|
CVE-2017-5901
|
2024-11-21 12:28 |
2017-05-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256250
|
6.1 |
MEDIUM
Network
|
kmc_information_systems
|
caseaware
|
An issue was discovered in KMCIS CaseAware. Reflected cross site scripting is present in the user parameter (i.e., "usr") that is transmitted in the login.php query string.
|
CWE-79
Cross-site Scripting
|
CVE-2017-5631
|
2024-11-21 12:28 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
