CVE-2017-20181
CVE-2017-20181 affects hgzojer Vocable Trainer for Android up to 1.3.0. The issue resides in VocableTrainerProvider.java and enables path traversal; local access is required for an exploit. A fix is available in version 1.3.1 via patch accf6838078f8eb105cfc7865aba5c705fb68426. References indicate...