CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

NVD•added 2015/11/23 11:59 a.m.•15 views

CVE-2015-5256

Apache Cordova-Android before 4.1.0, when an application relies on a remote server, improperly implements a JavaScript whitelist protection mechanism, which allows attackers to bypass intended access restrictions via a crafted URI...

4.3CVSS6.4AI score0.00705EPSS

Exploits0References6

Cvelist•added 2015/11/23 11:0 a.m.•16 views

CVE-2015-5256

6.4AI score0.00705EPSS

Exploits0References6

Cvelist•added 2015/11/23 11:0 a.m.•22 views

CVE-2015-8320

Apache Cordova-Android before 3.7.0 improperly generates random values for BridgeSecret data, which makes it easier for attackers to conduct bridge hijacking attacks by predicting a value...

9.3AI score0.01902EPSS

Exploits0References4

Prion•added 2014/11/15 9:59 p.m.•27 views

Information disclosure

Apache Cordova Android before 3.5.1 allows remote attackers to open and send data to arbitrary applications via a URL with a crafted URI scheme for an Android intent...

4.3CVSS7.1AI score0.01489EPSS

Exploits0References3Affected Software1

Cvelist•added 2014/11/15 9:0 p.m.•23 views

CVE-2014-3502

Apache Cordova Android before 3.5.1 allows remote attackers to open and send data to arbitrary applications via a URL with a crafted URI scheme for an Android intent...

6.6AI score0.01489EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by