{"vulnerability": "CVE-2019-2198", "sightings": [{"uuid": "38de401a-97f0-4c5c-b019-9337874aaf9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-2198", "type": "exploited", "source": "https://t.me/thebugbountyhunter/3689", "content": "Exploiting SQL Injection in Android's Download Provider (CVE-2019-2198)\n\nBlind SQL injection in Android's Download Provider will retrieve user cookies of downloaded file website (e.g. Gmail).\nPatched in November's 2019 Android Security Bulletin.\nPoC + info:https://github.com/IOActive/AOSP-DownloadProviderDbDumperSQLiWhere/", "creation_timestamp": "2020-01-20T09:43:49.000000Z"}, {"uuid": "19da9a5f-e9fb-4fb2-bcc2-b62f7836a4db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-2198", "type": "seen", "source": "https://t.me/ctinow/183957", "content": "https://ift.tt/w9D63MA\nCVE-2019-2198 | Google Android 8.0/8.1/9.0 Download Provider sql injection", "creation_timestamp": "2024-02-13T17:07:45.000000Z"}, {"uuid": "830d6764-3870-4485-a63c-435f06045835", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-2198", "type": "exploited", "source": "https://t.me/androidMalware/614", "content": "Exploiting SQL Injection in Android's Download Provider (CVE-2019-2198)\n\nBlind SQL injection in Android's Download Provider will retrieve user cookies of downloaded file website (e.g. Gmail).\nPatched in November's 2019 Android Security Bulletin.\nPoC + info:https://github.com/IOActive/AOSP-DownloadProviderDbDumperSQLiWhere/", "creation_timestamp": "2020-01-20T08:01:45.000000Z"}]}