Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Readdle Subscribe
Filtered by product Spark
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-12370 1 Readdle 1 Spark 2020-03-19 4.3 MEDIUM 6.1 MEDIUM
The Spark application through 2.0.2 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READ_EXTERNAL_STORAGE permission.