RSS   Vulnerabilities for 'Edison mail'   RSS

2020-03-18
 
CVE-2019-12368

CWE-79
 

 
The Edison Mail application through 1.7.1 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READ_EXTERNAL_STORAGE permission.

 


Copyright 2024, cxsecurity.com

 

Back to Top