CVE-2014-0073: Apache Cordova In-App-Browser privilege escalation
Vendor: The Apache Software Foundation
Versions Affected: Cordova In-App-Browser iOS plugin from Cordova versions 2.6.0 to 2.9.0 Cordova In-App-Browser iOS standalone plugin (org.apache.cordova.inappbrowser) versions 0.1.0 to 0.3.1
Upgrade path: Developers using the In-App Browser plugin in their applications should upgrade to version 0.3.2
Credit: This issue was discovered by Neil Bergman of Cigital, Inc.