Description
Directory traversal vulnerability in cordova-plugin-ionic-webview versions prior to 2.2.0 (not including 2.0.0-beta.0, 2.0.0-beta.1, 2.0.0-beta.2, and 2.1.0-0) allows remote attackers to access arbitrary files via unspecified vectors.
Remediation
References
http://jvn.jp/en/jp/JVN60497148/index.html
https://github.com/ionic-team/cordova-plugin-ionic-webview
https://jvn.jp/en/jp/JVN69812763/index.html
https://www.npmjs.com/advisories/746
Related Vulnerabilities
CVE-2021-23358 Vulnerability in npm package underscore
CVE-2015-8851 Vulnerability in maven package org.webjars.npm:node-uuid
CVE-2020-2121 Vulnerability in maven package org.jenkins-ci.plugins:google-kubernetes-engine
CVE-2020-28459 Vulnerability in npm package markdown-it-decorate
CVE-2022-36887 Vulnerability in maven package org.jenkins-ci.plugins:jobconfighistory