Skip to main content
CVE-2014-7532 MEDIUM This Month

The GES Agri Connect (aka com.wAgriConnect) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Ges Agri Connect
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7530 MEDIUM This Month

The PRIX IMPORT (aka com.myapphone.android.myapppriximport) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Prix Import
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7529 MEDIUM This Month

The Bodyguard for Hire (aka com.dreamstep.wBodyGuardforHire) application 0.18.13146.42280 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bodyguard For Hire
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7528 MEDIUM This Month

The Horsepower (aka com.apptive.android.apps.horsepower) application 2.10.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Horsepower
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7527 MEDIUM This Month

The Savage Nation Mobile Web (aka com.wSavageNation) application 0.57.13354.63350 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Savage Nation Mobile Web
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7526 MEDIUM This Month

The Immunize Canada (aka ca.ohri.immunizeapp) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Immunize Canada
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7525 MEDIUM This Month

The Domain Name Search & Web Host (aka com.wDomainNameSearchandRegistration) application 0.64.13398.55733 for Android does not verify X.509 certificates from SSL servers, which allows. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Domain Name Search Web Host
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7524 MEDIUM This Month

The Bed and Breakfast (aka com.wbedandbreakfastapp) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bed And Breakfast
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7523 MEDIUM This Month

The Radio Bethlehem RB2000 (aka com.Abuhadbah.rbl2000v2) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Radio Bethlehem Rb2000
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7522 MEDIUM This Month

The Maccabi Pakal (aka com.ideomobile.pakalmaccabi) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Maccabi Pakal
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7521 MEDIUM This Month

The Anderson Musaamil (aka com.app_andersonmusaamil.layout) application 1.400 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Anderson Musaamil
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7520 MEDIUM This Month

The Nova 92.1 FM (aka com.wNova921FM) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Nova 92 1 Fm
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7519 MEDIUM This Month

The Cycling Manager Game Cff (aka com.CyclingManagerGame) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Cycling Manager Game Cff
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7518 MEDIUM This Month

The Bowl Expo 2014 (aka com.coreapps.android.followme.bowlexpo14) application 6.1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bowl Expo 2014
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7517 MEDIUM This Month

The Myanmar Movies HD (aka com.wmyanmarmoviesHD) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Myanmar Movies Hd
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7516 MEDIUM This Month

The Central East LHIN News (aka com.wCentralEastLHINNews) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Central East Lhin News
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7515 MEDIUM This Month

The Bail Bonds (aka com.onesolutionapps.chadlewisbailbondsandroid) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bail Bonds
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7513 MEDIUM This Month

The Top Hangover Cures (aka com.TopHangoverCures) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Top Hangover Cures
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7510 MEDIUM This Month

The Graffit It (aka com.presenttechnologies.graffitit) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Graffit It
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7509 MEDIUM This Month

The A Very Short History of Japan (aka com.ireadercity.c51) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure A Very Short History Of Japan
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7508 MEDIUM This Month

The Help For Doc (aka com.childrens.physician.relations) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Help For Doc
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7507 MEDIUM This Month

The Hector Leal (aka ad.hector.leal.com) application 13/08/14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hector Leal
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7506 MEDIUM This Month

The Realtime Music Rank (aka com.blogspot.imapp.immusicrank2) application 5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Realtime Music Rank
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7505 MEDIUM This Month

The AppTalk (aka com.chatatami.apptalk) application 1.4.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Apptalk
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7502 MEDIUM This Month

The Escucha elDiario.es (aka es.lacabradev.escuchaeldiario) application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Escucha Eldiario
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7501 MEDIUM This Month

The Translation Widget (aka com.wTranslationGadget) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Translation Widget
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7499 MEDIUM This Month

The Sword (aka com.ireadercity.c25) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Sword
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7498 MEDIUM This Month

The Space Cinema (aka it.thespacecinema.android) application 2.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Space Cinema
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7497 MEDIUM This Month

The Portfolium (aka com.wPortfolium) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Portfolium
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7495 MEDIUM This Month

The LogosQuest - Beginnings (aka com.wLogosQuest) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Logosquest Beginnings
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7493 MEDIUM This Month

The 100 Books (aka com.ireadercity.c20) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure 100 Books
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7492 MEDIUM This Month

The Secretos de belleza (aka com.rareartifact.secretosdebelleza83A55CB8) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Secretos De Belleza
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7491 MEDIUM This Month

The Short Stories (aka com.ireadercity.c48) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Short Stories
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7490 MEDIUM This Month

The Menaka - Marathi (aka com.magzter.menakamarathi) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Menaka Marathi
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7488 MEDIUM This Month

The Vineyard All In (aka com.wVineyardAllIn) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Vineyard All In
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7487 MEDIUM This Month

The ADT Aesthetic Dentistry Today (aka com.magazinecloner.aestheticdentistry) application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Adt Aesthetic Dentistry Today
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7486 MEDIUM This Month

The Mitsubishi Road Assist (aka com.agero.mitsubishi) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Mitsubishi Road Assist
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7485 MEDIUM This Month

The Not Lost Just Somewhere Else (aka it.tinytap.attsa.notlost) application 1.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Not Lost Just Somewhere Else
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7484 MEDIUM This Month

The Coca-Cola FM Guatemala (aka com.enyetech.radio.coca_cola.fm_gu) application 2.0.41725 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Coca Cola Fm Guatemala
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7624 MEDIUM This Month

The Guess the Pixel Character Quiz (aka com.aiadp.pixelcQuiz) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Guess The Pixel Character Quiz
NVD
CVSS 2.0
5.4
EPSS
0.0%
CVE-2014-3863 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the JChatSocial component before 2.3 for Joomla!. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS File Upload Jchatsocial
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2014-8365 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in Xornic Contact Us allow remote attackers to inject arbitrary web script or HTML via the (1) name or (2) email parameter to contact.php or (3). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

XSS PHP Contact Us
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2014-5169 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the Date module before 7.x-2.8 for Drupal allows remote authenticated users with the permission to create a date field to inject arbitrary web script or. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Date
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-5449 LOW Monitor

Zarafa WebAccess 4.1 and WebApp uses world-readable permissions for the files in their tmp directory, which allows local users to obtain sensitive information by reading temporary session data. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Webaccess Webapp
NVD
CVSS 2.0
2.1
EPSS
0.0%
CVE-2014-5448 LOW Monitor

Zarafa 5.00 uses world-readable permissions for the files in the log directory, which allows local users to obtain sensitive information by reading the log files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Zarafa
NVD
CVSS 2.0
2.1
EPSS
0.0%
CVE-2014-5447 LOW Monitor

Zarafa WebAccess 7.1.10 and WebApp 1.6 beta uses weak permissions (644) for config.php, which allows local users to obtain sensitive information by reading the PHP session files. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

PHP Information Disclosure Webapp Zarafa
NVD
CVSS 2.0
2.1
EPSS
0.0%
Prev Page 3 of 3

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy