Vijay Tikudave

3 exploits Active since Mar 2020
CVE-2020-10570 WRITEUP MEDIUM WRITEUP
Telegram <5.12 - Auth Bypass
The Telegram application through 5.12 for Android, when Show Popup is enabled, might allow physically proximate attackers to bypass intended restrictions on message reading and message replying. This might be interpreted as a bypass of the passcode feature.
CVSS 6.1
CVE-2020-12474 WRITEUP MEDIUM WRITEUP
Telegram <2.0.1, <6.0.1 - XSS
Telegram Desktop through 2.0.1, Telegram through 6.0.1 for Android, and Telegram through 6.0.1 for iOS allow an IDN Homograph attack via Punycode in a public URL or a group chat invitation URL.
CVSS 6.5
CVE-2020-17448 WRITEUP HIGH WRITEUP
Telegram Desktop <2.1.13 - Info Disclosure
Telegram Desktop through 2.1.13 allows a spoofed file type to bypass the Dangerous File Type Execution protection mechanism, as demonstrated by use of the chat window with a filename that lacks an extension.
CVSS 7.8