mobsf vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2026-33545Mediummobsf: MobSF has SQL Injection in its SQLite Database Viewer UtilsCVE-2026-24490Highmobsf: MobSF has Stored XSS via Manifest Analysis - Dialer Code Host FieldCVE-2025-58161Lowmobsf: MobSF Path Traversal in GET /download/<filename> using absolute filenamesCVE-2025-58162Mediummobsf: MobSF Vulnerable to Arbitrary File Write (AR-Slip) via Absolute Path in .a ExtractionCVE-2024-54000Highmobsf: MobSF vulnerability allows SSRF due to the allow_redirects=True parameterCVE-2025-46730Mediummobsf: Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death AttackCVE-2025-46335Mediummobsf: Mobile Security Framework (MobSF) Allows Stored Cross Site Scripting (XSS) via malicious SVG Icon…CVE-2025-31116Mediummobsf: Mobile Security Framework (MobSF) has a SSRF Vulnerability fix bypass on assetlinks_check with DNS…CVE-2025-24805Highmobsf: MobSF Local Privilege EscalationCVE-2025-24804Highmobsf: MobSF Partial Denial of Service (DoS)CVE-2025-24803Highmobsf: MobSF Stored Cross-Site Scripting (XSS)CVE-2024-53999Mediummobsf: Mobile Security Framework (MobSF) Stored Cross-Site Scripting Vulnerability in "Diff or Compare"…CVE-2024-43399Highmobsf: Mobile Security Framework (MobSF) has a Zip Slip Vulnerability in .a Static Library FilesCVE-2024-41955Mediummobsf: MobSF vulnerable to Open Redirect in Login RedirectCVE-2024-31215Mediummobsf: Mobile Security Framework (MobSF) vulnerable to SSRF in firebase database checkCVE-2022-41547Highmobsf: MobSF allows attackers to read arbitrary files via a crafted HTTP request

Stop the waste.
Protect your environment with Kodem.