Lucene search
+L

5 matches found

nvd
nvd
added 2015/11/23 11:59 a.m.21 views

CVE-2015-5256

Apache Cordova-Android before 4.1.0, when an application relies on a remote server, improperly implements a JavaScript whitelist protection mechanism, which allows attackers to bypass intended access restrictions via a crafted URI...

4.3CVSS6.4AI score0.04216EPSS
Exploits0References6
cvelist
cvelist
added 2015/11/23 11:0 a.m.36 views

CVE-2015-8320

Apache Cordova-Android before 3.7.0 improperly generates random values for BridgeSecret data, which makes it easier for attackers to conduct bridge hijacking attacks by predicting a value...

9.3AI score0.04435EPSS
Exploits0References4
cvelist
cvelist
added 2015/11/23 11:0 a.m.19 views

CVE-2015-5256

Apache Cordova-Android before 4.1.0, when an application relies on a remote server, improperly implements a JavaScript whitelist protection mechanism, which allows attackers to bypass intended access restrictions via a crafted URI...

6.4AI score0.04216EPSS
Exploits0References6
prion
prion
added 2014/11/15 9:59 p.m.30 views

Information disclosure

Apache Cordova Android before 3.5.1 allows remote attackers to open and send data to arbitrary applications via a URL with a crafted URI scheme for an Android intent...

4.3CVSS7.1AI score0.04964EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2014/11/15 9:0 p.m.28 views

CVE-2014-3502

Apache Cordova Android before 3.5.1 allows remote attackers to open and send data to arbitrary applications via a URL with a crafted URI scheme for an Android intent...

6.6AI score0.04964EPSS
Exploits0References3
Rows per page
Query Builder