Tinycards

tinycards

Vendor: Duolingo • 1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-16905 1Duolingo 1Tinycards Nov 21, 2024 Jan 5, 2018 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack.