CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2318

The Content Provider in the MovatwiTouch application before 1.793 and MovatwiTouch Paid application before 1.793 for Android does not properly restrict access to authorization information, which allows attackers to hijack Twitter accounts via a crafted application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.2%

CVSS Severity

CVSS v2 Score 2.6

References

http://jvn.jp/en/jp/JVN90289505/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000047
http://movatwitter.jugem.jp/?eid=442
http://jvn.jp/en/jp/JVN90289505/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2013-000047
http://movatwitter.jugem.jp/?eid=442

Products affected by CVE-2013-2318

Jig » Movatwitouch » Version: 1.792

cpe:2.3:a:jig:movatwitouch:1.792
Jig » Movatwitouch Paid » Version: 1.792

cpe:2.3:a:jig:movatwitouch_paid:1.792

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2318

Products

Pricing

Contact Us