The WebView class in the Cybozu KUNAI application before 2.0.6 for Android allows remote attackers to execute arbitrary JavaScript code, and obtain sensitive information, via a crafted application that places this code into a local file associated with a file: URL.
References
Configurations
Information
Published : 2012-09-08 03:28
Updated : 2012-09-09 21:00
NVD link : CVE-2012-4012
Mitre link : CVE-2012-4012
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
cybozu
- kunai