Ionic Team Cordova plugin iOS Keychain Information Disclosure Vulnerability

Ionic Team Cordova plugin iOS Keychain is an open source Cordova mobile application development platform plugin for iOS password manager. Ionic Team Cordova plugin iOS Keychain commit 18233ca25dfa92cca018b9c0935f43f78fd77fbf An information disclosure vulnerability exists in the CDVKeychain.m file...

Information Disclosure Through Log Files

cordova-plugin-ios-keychain is vulnerable to information disclosure through log files. The vulnerability exists as the plugin logs sensitive information in plaintext, allowing attackers to obtain them...

CVE-2018-1000123

Ionic Team Cordova plugin iOS Keychain version before commit 18233ca25dfa92cca018b9c0935f43f78fd77fbf contains an Information Exposure Through Log Files CWE-532 vulnerability in CDVKeychain.m that can result in login, password and other sensitive data leakage. This attack appear to be exploitable...

CVE-2018-1000123

The vulnerability CVE-2018-1000123 affects the Ionic Cordova plugin for iOS Keychain, specifically the CDVKeychain.m file in versions before commit 18233ca25dfa92cca018b9c0935f43f78fd77fbf. It describes an Information Exposure Through Log Files (CWE-532) that can leak login credentials and other ...

objection - Runtime Mobile Exploration

objection is a runtime mobile exploration toolkit, powered by Frida. It was built with the aim of helping assess mobile applications and their security posture without the need for a jailbroken or rooted mobile device. The project's name quite literally explains the approach as well, whereby...

idb - iOS App Security Assessment Tool

idb is a tool to simplify some common tasks for iOS app security assessments and research. Please see the Documentation for a more detailed summary of each function. Features Assessment Setup SSH port forwarding Installation of helper utilities App Information Bundle information Registered URL...