Apache Cordova Bypass / Information Disclosure / Insertion
Apache Cordova versions up to 3.5.0 suffer from information disclosure, whitelist bypass, and cross application issues.
View ArticleApache Cordova 3.5.0 Data Leak
Android applications built with the Cordova framework can launch other applications through the use of anchor tags, or by redirecting the webview to an Android intent URL. An attacker who can...
View ArticleApache Cordova Android 3.6.4 BridgeSecret Weak Randomization
Apache Cordova Android versions 3.6.4 and below use a bridge that allows the Native Application to communicate with the HTML and Javascript that control the user interface. To protect this bridge on...
View Article
More Pages to Explore .....