Vulnerabilities > 9Folders

DATE CVE VULNERABILITY TITLE RISK
2020-03-18 CVE-2019-12366 Cross-site Scripting vulnerability in 9Folders Nine
The Nine application through 4.5.3a for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READ_EXTERNAL_STORAGE permission.
network
low complexity
9folders CWE-79
6.1
2018-05-16 CVE-2017-17689 The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. 5.9