7 matches found
EUVD-2019-4003
Malware in sbrugna...
CVE-2019-12368
The Edison Mail application through 1.7.1 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READEXTERNALSTORAGE permission...
Edison Mail iOS Bug Exposes Emails to Strangers
Edison Mail, a popular third-party email app, has warned thousands of iOS users that their emails may have been compromised after a security flaw exposed emails to complete strangers. Edison Mail, owned by Edison Software Inc., is in the top 100 productivity apps on the Apple app store, and touts...
CVE-2019-12368
The Edison Mail application through 1.7.1 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READEXTERNALSTORAGE permission...
Cross site scripting
The Edison Mail application through 1.7.1 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READEXTERNALSTORAGE permission...
CVE-2019-12368
The Edison Mail application through 1.7.1 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READEXTERNALSTORAGE permission...
CVE-2019-12368
The CVE-2019-12368 entry concerns Edison Mail for Android (up to version 1.7.1). The issue is an XSS vulnerability via an event attribute and the ability to load arbitrary files through a src attribute when the app holds READ_EXTERNAL_STORAGE permission. Descriptions across sources consistently i...