Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES SCA (Software Composition Analysis)

CVE-2014-3500 Vulnerability in npm package cordova-android

Description

Apache Cordova Android before 3.5.1 allows remote attackers to change the start page via a crafted intent URL.

Remediation

References

http://cordova.apache.org/announcements/2014/08/04/android-351.html

http://www.securityfocus.com/bid/69038

Related Vulnerabilities

CVE-2012-1833 Vulnerability in maven package org.grails:grails-plugin-controllers

CVE-2017-1000395 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2020-12480 Vulnerability in maven package com.typesafe.play:play_2.11

CVE-2021-21604 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

CVE-2020-6451 Vulnerability in maven package org.webjars.npm:electron

Severity

Critical

Classification

CWE-17

Tags

Vendor Advisory