Computer Security
[EN] securityvulns.ru no-pyccku


Different iOS / Android applications vulnerabilities
updated since 04.05.2015
Published:25.10.2015
Source:
SecurityVulns ID:14430
Type:remote
Threat Level:
5/10
Description:Information leaks, code execution, protection bypass, etc.
Affected:WIRELESSDRIVETRA : Wireless File Transfer Pro 5.9
 GRINDR : GRINDR 2.1
 PDFCONVERTEREDIT : PDF Converter & Editor 2.1
 HIDISK : HiDisk 2.4
 DEVICEINSPECTOR : Device Inspector 1.5
 UDID : UDID 1.0
 PHOTOMANAGERPRO : Photo Manager Pro 4.4
 ICLASSSCHEDULE : iClassSchedule 1.6
 APACHE : Cordova 4.0
 WIFIDRIVEPRO : WiFi Drive Pro 1.2
 WEBROOT : SecureAnywhere Business Mobile Protection 1.10
 AIRDRIVEPLUS : Air Drive Plus 2.4
 MYWIFIUSBDRIVE : My.WiFi USB Drive 1.0
 APACHE : Cordova Android File Transfer Plugin 1.2
 WIRELESSPHOTOTRA : Wireless Photo Transfer 3.0
 OYO : OYO File Manager 1.1
 UDID : UDID+ 2.5
 WIFIDRIVECR : WiFi Drive CR 1.0
 PHOTOSINWIFI : Photos in Wifi 1.0
 GRINDR : GRINDR 2.1
 SEVDESK : SevDesk 1.1
 IPASSWORDMANAGER : iPasswordManager 2.6
 MOBILEDRIVEHD : Mobile Drive HD 1.8
 PHOTOWEBSITE : PhotoWebsite 3.1
 AVIRA : Avira Mobile Security 1.5
 ALBUMSTREAMER : Album Streamer 2.0
 EISBAR : Eisbar SCADA 2.1
 VPHOTOALBUM : vPhoto-Album 4.2
CVE:CVE-2015-5204 (CRLF injection vulnerability in the Apache Cordova File Transfer Plugin (cordova-plugin-file-transfer) for Android before 1.3.0 allows remote attackers to inject arbitrary headers via CRLF sequences in the filename of an uploaded file.)
 CVE-2015-1835
Original documentdocumentAPACHE, Re: CVE-2015-5204: HTTP header injection vulnerability in Apache Cordova File Transfer Plugin for Android (25.10.2015)
 documentVulnerability Lab, Photos in Wifi v1.0.1 iOS - Arbitrary File Upload Vulnerability (25.10.2015)
 documentVulnerability Lab, My.WiFi USB Drive v1.0 iOS - File Include Vulnerability (25.10.2015)
 documentVulnerability Lab, WiFi Drive CR v1.0 iOS - Persistent Filename Dir List Vulnerability (25.10.2015)
 documentVulnerability Lab, UDID v1.0 iOS - Persistent Mail Encode Vulnerability (25.10.2015)
 documentVulnerability Lab, Air Drive Plus v2.4 iOS - Arbitrary File Upload Vulnerability (25.10.2015)
 documentDavid Coomber, Webroot SecureAnywhere Mobile Protection - MITM SSL Certificate Vulnerability (14.09.2015)
 documentDavid Coomber, Avira Mobile Security iOS Application - Cleartext Credentials Vulnerability (14.09.2015)
 documentVulnerability Lab, Device Inspector v1.5 iOS - Command Inject Vulnerabilities (24.08.2015)
 documentVulnerability Lab, AirDroid ID - Client Side JSONP Callback Vulnerability (24.08.2015)
 documentVulnerability Lab, UDID+ v2.5 iOS - Mail Command Inject Vulnerability (24.08.2015)
 documentDirk-Willem van Gulik, CVE-2015-1835: ... (01.06.2015)
 documentVulnerability Lab, Wireless Photo Transfer v3.0 iOS - File Include Vulnerability (01.06.2015)
 documentVulnerability Lab, iClassSchedule 1.6 iOS & Android - Persistent UI Vulnerability (01.06.2015)
 documentVulnerability Lab, OYO File Manager 1.1 iOS&Android - Multiple Vulnerabilities (01.06.2015)
 documentVulnerability Lab, HiDisk 2.4 iOS - (currentFolderPath) Persistent Vulnerability (01.06.2015)
 documentVulnerability Lab, Eisbar SCADA (All Versions - iOS, Android & W8) - Persistent UI Vulnerability (01.06.2015)
 documentDavid Coomber, Thycotic Password Manager Secret Server iOS Application - MITM SSL Certificate Vulnerability (01.06.2015)
 documentVulnerability Lab, PDF Converter & Editor 2.1 iOS - File Include Vulnerability (11.05.2015)
 documentVulnerability Lab, vPhoto-Album v4.2 iOS - File Include Web Vulnerability (11.05.2015)
 documentVulnerability Lab, Album Streamer v2.0 iOS - Directory Traversal Vulnerability (10.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS & Account System - Breach Attack Vulnerability (10.05.2015)
 documentVulnerability Lab, Mobile Drive HD v1.8 - File Include Web Vulnerability (05.05.2015)
 documentVulnerability Lab, Wireless File Transfer Pro Android - Multiple CSRF Vulnerabilities (05.05.2015)
 documentVulnerability Lab, Photo Manager Pro 4.4.0 iOS - Code Execution Vulnerability (04.05.2015)
 documentVulnerability Lab, Photo Manager Pro v4.4.0 iOS - File Include Vulnerability (04.05.2015)
 documentVulnerability Lab, Wifi Drive Pro v1.2 iOS - File Include Web Vulnerability (04.05.2015)
 documentVulnerability Lab, iPassword Manager v2.6 iOS - Persistent Vulnerabilities (04.05.2015)
 documentVulnerability Lab, SevDesk v1.1 iOS - Persistent Dashboard Vulnerability (04.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS Bounty #1 - (Session) Auth Bypass Vulnerabilities (04.05.2015)
 documentVulnerability Lab, Grindr v2.1.1 iOS - (eMail) Session Vulnerability (04.05.2015)
 documentVulnerability Lab, Grindr 2.1.1 iOS Bug Bounty #2 - Denial of Service Software Vulnerability (04.05.2015)
 documentVulnerability Lab, PhotoWebsite v3.1 iOS - File Include Web Vulnerability (04.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod