Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
android browser vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5770
The Web Browser for Android (aka explore.web.browser) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Web Browser For Android Project Web Browser For Android 1.2
NA
CVE-2008-7298
The Android browser in Android cannot properly restrict modifications to cookies established in HTTPS sessions, which allows man-in-the-middle malicious users to overwrite or delete arbitrary cookies via a Set-Cookie header in an HTTP response, related to lack of the HTTP Strict ...
Android Android Browser
Google Android
NA
CVE-2014-6041
The Android WebView in Android prior to 4.4 allows remote malicious users to bypass the Same Origin Policy via a crafted attribute containing a \u0000 character, as demonstrated by an onclick="window.open('\u0000javascript: sequence to the Android Browser application 4....
Google Android Browser 4.2.1
2 Metasploit modules
1 Github repository
1 Article
NA
CVE-2012-5179
The Boat Browser application prior to 4.2 and Boat Browser Mini application prior to 3.9 for Android do not properly implement the WebView class, which allows malicious users to obtain sensitive information via a crafted application.
Boatmob Boat Browser 3.1
Boatmob Boat Browser 2.6
Boatmob Boat Browser
Boatmob Boat Browser 3.3
Boatmob Boat Browser 2.4.1
Boatmob Boat Browser 2.3
Boatmob Boat Browser 2.2
Boatmob Boat Browser 2.1
Boatmob Boat Browser 3.2.1
Boatmob Boat Browser 3.0
Boatmob Boat Browser 2.5.1
Boatmob Boat Browser 2.0
Boatmob Boat Browser Mini 3.3
Boatmob Boat Browser Mini 2.7
Boatmob Boat Browser Mini 2.6.1
Boatmob Boat Browser Mini 3.4
Boatmob Boat Browser Mini 2.8
Boatmob Boat Browser Mini 3.2
Boatmob Boat Browser Mini 2.7.1
Boatmob Boat Browser Mini 3.1
Boatmob Boat Browser Mini 3.0.1
Boatmob Boat Browser Mini 3.6
NA
CVE-2012-2635
The Dolphin Browser HD application prior to 7.6 and Dolphin for Pad application prior to 1.0.1 for Android do not properly implement the WebView class, which allows remote malicious users to obtain sensitive information via a crafted application.
Dolphin-browser Dolphin Browser Hd
Dolphin-browser Dolphin Browser Hd 6.2.0
Dolphin-browser Dolphin Browser Hd 7.2.1
Dolphin-browser Dolphin Browser Hd 7.3.0
Dolphin-browser Dolphin For Pad
NA
CVE-2013-2316
The Yahoo! Browser application 1.4.4 and previous versions for Android allows remote malicious users to spoof the address bar via vectors related to URL display, a different vulnerability than CVE-2013-2307.
Yahoo Yahoo\\! Browser 1.2.0
Yahoo Yahoo\\! Browser 1.4.2
Yahoo Yahoo\\! Browser
Yahoo Yahoo\\! Browser 1.4.4
NA
CVE-2012-1392
Unspecified vulnerability in the Dolphin Browser HD (mobi.mgeek.TunnyBrowser) application 6.2.0, 7.2.1, 7.3.0, and 7.4.0 for Android has unknown impact and attack vectors.
Dolphin-browser Dolphin Browser Hd 6.2.0
Dolphin-browser Dolphin Browser Hd 7.2.1
Dolphin-browser Dolphin Browser Hd 7.3.0
Dolphin-browser Dolphin Browser Hd 7.4.0
7.5
CVSSv3
CVE-2023-6540
A vulnerability was reported in the Lenovo Browser Mobile and Lenovo Browser HD Apps for Android that could allow an malicious user to craft a payload that could result in the disclosure of sensitive information.
Lenovo Browser Hd
Lenovo Browser Mobile
6.1
CVSSv3
CVE-2021-29370
A UXSS exists in the Thanos-Soft Cheetah Browser in Android 1.2.0 due to the inadequate filter of the intent scheme. This resulted in Cross-site scripting on the cheetah browser in any website.
Cheetah Browser Project Cheetah Browser 1.2.0
NA
CVE-2014-5807
The Safari Browser (aka safari.safaribrowser.internetexplorer) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Safari Browser Project Safari Browser 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »