Open Redirection
Affecting cordova-ios package, versions <0.0.0
Do your applications use this vulnerable package?
Test your applications
Amendment
This was deemed not a vulnerability.
Overview
cordova-ios is a iOS application library that allows for Cordova-based projects to be built for the iOS Platform.
Affected versions of this package are vulnerable to Open Redirection.
Overview
cordova-ios
is an iOS application library that allows for Cordova-based projects to be built for the iOS Platform.
This issue was found
Remediation
There is no fix version for cordova-ios
.
References
Remediation
References
CVSS Score
8.2
high severity
-
Attack VectorNetwork
-
Attack ComplexityLow
-
Privileges RequiredNone
-
User InteractionNone
-
ScopeUnchanged
-
ConfidentialityHigh
-
IntegrityLow
-
AvailabilityNone
- Credit
- Sahil
- CWE
- CWE-601
- Snyk ID
- npm:cordova-ios:20170207
- Disclosed
- 06 Feb, 2017
- Published
- 21 Jun, 2017