VYPR

npm package

cordova-plugin-inappbrowser

pkg:npm/cordova-plugin-inappbrowser

Vulnerabilities (1)

  • CVE-2019-0219Jan 14, 2020
    affected < 3.1.0fixed 3.1.0

    A website running in the InAppBrowser webview on Android could execute arbitrary JavaScript in the main application's webview using a specially crafted gap-iab: URI.