Felix Segoviano

#6152of 53,633
44.2Total CVSS
Vulnerabilities · 5
High
2
Critical
3
PT-2026-1770
7.5
2026-01-08
Google · Gmail · CVE-2025-15464
**Name of the Vulnerable Software and Affected Versions** Gmail (affected versions not specified) **Description** An exported activity allows external applications to gain application context and directly launch Gmail with inbox access, bypassing security controls. This allows unauthorized access to Gmail inboxes. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-22571
9.1
2025-05-23
Unknown · Printershare · CVE-2025-5098
**Name of the Vulnerable Software and Affected Versions** PrinterShare (affected versions not specified) **Description** The issue allows the capture of Gmail authentication tokens, which can be reused to access a user's Gmail account without proper authorization. This affects the PrinterShare Android application. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-22573
8.0
2025-05-23
Mobile Dynamix · Printershare Mobile Print · CVE-2025-5100
**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** A double-free condition occurs during the cleanup of temporary image files, which can be exploited to achieve memory corruption and potentially arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2025-22572
10
2025-04-09
Mobile Dynamix · Printershare Mobile Print · CVE-2025-5099
**Name of the Vulnerable Software and Affected Versions** The product name cannot be determined. **Description** An Out of Bounds Write occurs when the native library attempts PDF rendering, which can be exploited to achieve memory corruption and potentially arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-29851
9.6
2023-10-20
Reconftw · Reconftw · CVE-2023-46117
**Name of the Vulnerable Software and Affected Versions** reconFTW versions prior to 2.7.1.1 **Description** A vulnerability has been identified in reconFTW where inadequate validation of retrieved subdomains may lead to a Remote Code Execution (RCE) attack. An attacker can exploit this vulnerability by crafting a malicious Content Security Policy (CSP) entry on its own domain. Successful exploitation can lead to the execution of arbitrary code within the context of the application, potentially compromising the system. **Recommendations** For versions prior to 2.7.1.1, upgrade to version 2.7.1.1 to address the issue. As a temporary workaround, consider restricting the use of the subdomain scanning feature until the upgrade is applied. Avoid using the tool for automated recon on untrusted domains until the issue is resolved.