3 matches found
DrinkedIn BarFinder application安全绕过任意Javascript代码执行漏洞
CVE ID:CVE-2014-1887 DrinkedIn BarFinder application是一款基于安卓的应用。 当使用Adobe PhoneGap 2.9.0或之前版本时DrinkedIn BarFinder application存在安全漏洞,允许远程攻击者控制类似freelifetimecheating.com和www.babesroulette.com之类的站点,来执行任意JavaScript代码,获取地理信息。 0 DrinkedIn BarFinder application for Android 目前没有详细解决方案提供:...
CVE-2014-1887
The DrinkedIn BarFinder application for Android, when Adobe PhoneGap 2.9.0 or earlier is used, allows remote attackers to execute arbitrary JavaScript code, and consequently obtain sensitive fine-geolocation information, by leveraging control over one of a number of adult sites, as demonstrated b...
CVE-2014-1887
The CVE concerns the DrinkedIn BarFinder Android app when used with Adobe PhoneGap 2.9.0 or earlier. The underlying issue allows a remote attacker to execute arbitrary JavaScript by exploiting control over certain adult sites (e.g., freelifetimecheating.com and www.babesroulette.com), which in tu...