Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework prior to 1.13.0 for Android and iOS allows remote malicious users to inject arbitrary web script or HTML via a crafted URL that triggers WebView anchor attachment in an applican application, a different vulnerability than CVE-2015-7771.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
newphoria corporation applican |