RSS   Vulnerabilities for 'Newton'   RSS

2020-03-18
 
CVE-2019-12365

CWE-79
 

 
The Newton application through 10.0.23 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READ_EXTERNAL_STORAGE permission.

 


Copyright 2024, cxsecurity.com

 

Back to Top