Vulnerabilities > Ithoughts

DATE	CVE	VULNERABILITY TITLE	RISK
2014-03-26	CVE-2014-1828	Improper Input Validation vulnerability in Ithoughts Ithoughtshd 4.19 The iThoughts web server in the iThoughtsHD app 4.19 for iOS on iPad devices allows remote attackers to cause a denial of service (disk consumption) by uploading a large file. network ithoughts CWE-20	4.3
2014-03-26	CVE-2014-1827	Improper Input Validation vulnerability in Ithoughts Ithoughtshd 4.19 The iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to upload arbitrary files by placing a %00 sequence after a dangerous extension, as demonstrated by a .html%00.txt file. network ithoughts CWE-20	4.3
2014-03-26	CVE-2014-1826	Cross-Site Scripting vulnerability in Ithoughts Ithoughtshd 4.19 Cross-site scripting (XSS) vulnerability in the iThoughtsHD app 4.19 for iOS on iPad devices, when the WiFi Transfer feature is used, allows remote attackers to inject arbitrary web script or HTML via a crafted map name. network high complexity ithoughts CWE-79	2.6

Vulnerabilities > Ithoughts {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Ithoughts"}]}