2 matches found
CVE-2019-16681
The Traveloka application 3.14.0 for Android exports com.traveloka.android.activity.common.WebViewActivity, leading to the opening of arbitrary URLs, which can inject deceptive content into the UI. When in physical possession of the device, opening local files is also possible. NOTE: As of...
CVE-2019-16681
CVE-2019-16681 affects the Traveloka Android app (version 3.14.0) where the component com.traveloka.android.activity.common.WebViewActivity exports functionality that can open arbitrary URLs and inject deceptive content into the UI. The issue can also allow opening local files when the device is ...