CVE-2014-0072

EPSS 1.49% · P81 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-0072

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

ios/CDVFileTransfer.m in the Apache Cordova File-Transfer standalone plugin (org.apache.cordova.file-transfer) before 0.4.2 for iOS and the File-Transfer plugin for iOS from Cordova 2.4.0 through 2.9.0 might allow remote attackers to spoof SSL servers by leveraging a default value of true for the trustAllHosts option.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apache Cordova File-Transfer 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cordova是美国阿帕奇（Apache）软件基金会的一套可使用HTML、CSS和JavaScript开发移动应用程序的平台，也是驱动PhoneGap（开发框架）的核心引擎。Cordova File-Transfer是其中的一个文件传输插件。 Cordova File-Transfer中存在安全漏洞。目前尚无关于此漏洞的详细信息。请随时关注cnnvd网站或厂商公告。以下版本受到影响：Cordova File-Transfer iOS plugin from Cordova 2.4.0至2.9.0版本；Co

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-0072

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-0072

请登录查看更多情报信息。

http://d3adend.org/blog/?p=403x_refsource_MISC
https://github.com/apache/cordova-plugin-file-transfer/commit/a1d6fc07e8a40c1b2b16f4103c403b30e1089668x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/91561vdb-entryx_refsource_XF
http://seclists.org/fulldisclosure/2014/Mar/29mailing-listx_refsource_FULLDISC
http://www.securityfocus.com/archive/1/531335/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2014-0072

Same Patch Batch · n/a · 2017-10-30 · 29 CVEs total

CVE-2012-5358		Ektron Content Management System 安全漏洞
CVE-2017-9450		Amazon Web Services CloudFormation bootstrap工具包安全漏洞
CVE-2017-9377		Barco ClickShare CSM-1 Base Unit和ClickShare CSC-1 Base Unit 命令注入漏洞
CVE-2017-7411		Enalean Tuleap 安全漏洞
CVE-2017-15597		Xen 安全漏洞
CVE-2017-12460		Barco ClickShare CSM-1和ClickShare CSC-1 安全漏洞
CVE-2016-3090		Apache Struts 2 安全漏洞
CVE-2015-7549		QEMU 安全漏洞
CVE-2015-3249		Apache Traffic Server 安全漏洞
CVE-2015-0226		Apache WSS4J 加密问题漏洞
CVE-2015-0224		Apache Qpid 代码问题漏洞
CVE-2014-3624		Apache Traffic Server 安全漏洞
CVE-2014-3526		Apache Wicket 安全漏洞
CVE-2013-4246		Apache Subversion 安全漏洞
CVE-2017-1000255		Power8 Linux kernel 安全漏洞
CVE-2012-5357		Ektron Content Management System 安全漏洞
CVE-2017-15921		WatchDog Anti-Malware和Online Security Pro zam32.sys驱动程序资源管理错误漏洞
CVE-2017-15920		WatchDog Anti-Malware和Online Security Pro zam32.sys驱动程序资源管理错误漏洞
CVE-2014-0115		Apache Storm 目录遍历漏洞
CVE-2012-0881		Apache Xerces2 Java 安全漏洞

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-0072

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-0072

I. Basic Information for CVE-2014-0072

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-0072

III. Intelligence Information for CVE-2014-0072

Same Patch Batch · n/a · 2017-10-30 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-0072

Leave a comment