Snapchat: Vulnerable to JavaScript injection. (WXS) (Javascript injection)!

2015-04-03T11:21:29
ID H1:54631
Type hackerone
Reporter protector47
Modified 2015-10-22T14:22:09

Description

Vulnerable to JavaScript injection. (WXS)

Description: Java script injected in activity: net.hockeyapp.android.UpdateActivity with injection String: document.getElementsByTagName('body')[0].setAttribute('style', 'background-color: red');

Recommended Solution: Local HTML modifications via malware or other apps results in execution of malicious JavaScript in the presentation layer of the app. This may result in information theft.

Verify that JavaScript and Plugin support is disabled for any WebViews (usually the default).

Ensure that all UIWebView calls do not execute without proper input validation. Apply filters for dangerous JavaScript characters if possible, using a whitelist over blacklist character policy before rendering.

References: Mobile Top 10 2014-M7(Client Side Injection) - OWASP Adventures with Android WebViews (Javascript injection) - OWASP

Thanks,