The CDVInAppBrowser class in the Apache Cordova In-App-Browser plugin before 0.3.2 for iOS does not validate callback identifiers, leading to remote code execution
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
seebug.org | Apache Cordova InAppBrowserθΏη¨ζιζεζΌζ΄ | 7 Mar 201400:00 | β | seebug |
NVD | CVE-2014-0073 | 30 Oct 201719:29 | β | nvd |
securityvulns | [CVE-2014-0072] Apache Cordova File-Transfer insecure defaults | 5 May 201400:00 | β | securityvulns |
CVE | CVE-2014-0073 | 30 Oct 201719:29 | β | cve |
Prion | Authentication flaw | 30 Oct 201719:29 | β | prion |
Veracode | Elevation Of Privileges | 31 Oct 201705:12 | β | veracode |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo