CVE-2015-5256

2015-11-23T06:59:00
ID CVE-2015-5256
Type cve
Reporter NVD
Modified 2016-12-07T13:16:10

Description

Apache Cordova-Android before 4.1.0, when an application relies on a remote server, improperly implements a JavaScript whitelist protection mechanism, which allows attackers to bypass intended access restrictions via a crafted URI.