CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
Percentile
56.7%
applican provided by Newphoria Corporation Inc. is a platform to build hybrid applications for both iOS and Android. applican is vulnerable to script injection due to an issue in processing SSID.
When an application built using applican processes a specially crafted SSID, an arbitrary script may be executed leading to an arbitrary API being called.
Update applican and rebuild the application
Update to the latest version of applican and rebuild the application according to the information provided by the developer.