Skip to main content

Flutter Downloader

1 CVEs product

Monthly

CVE-2023-41387 CRITICAL POC Act Now

A SQL injection in the flutter_downloader component through 1.11.1 for iOS allows remote attackers to steal session tokens and overwrite arbitrary files inside the app's container. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Apple SQLi Flutter Downloader
NVD
CVSS 3.1
9.1
EPSS
0.7%
EPSS 1% CVSS 9.1
CRITICAL POC Act Now

A SQL injection in the flutter_downloader component through 1.11.1 for iOS allows remote attackers to steal session tokens and overwrite arbitrary files inside the app's container. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Apple SQLi Flutter Downloader
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy