← volver
CVE-2025-15464

KL-001-2026-01: yintibao Fun Print Mobile Unauthorized Access via Context Hijacking

CVSS 7.5 HIGHEPSS 0.5%CWE-926
Exported Activity allows external applications to gain application context and directly launch Gmail with inbox access, bypassing security controls.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Productos afectados
yintibao · Fun Print Mobile

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://seclists.org/fulldisclosure/2026/Jan/12https://korelogic.com/Resources/Advisories/KL-001-2026-001.poc.js.txthttps://korelogic.com/Resources/Advisories/KL-001-2026-001.txt