Vulnerabilities (CVE)

Filtered by vendor Ithoughts Subscribe
Filtered by product Ithoughtshd
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-1828 1 Ithoughts 1 Ithoughtshd 2024-02-04 4.3 MEDIUM N/A
The iThoughts web server in the iThoughtsHD app 4.19 for iOS on iPad devices allows remote attackers to cause a denial of service (disk consumption) by uploading a large file.
CVE-2014-1827 1 Ithoughts 1 Ithoughtshd 2024-02-04 4.3 MEDIUM N/A
The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file.
CVE-2014-1826 1 Ithoughts 1 Ithoughtshd 2024-02-04 2.6 LOW N/A
Cross-site scripting (XSS) vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name.