[email protected] – Node.js cordova-plugin-ionic-webview: directory traversal, analyzed on 17/12/2018

CERT-LatestNews ThreatsCybercrime VulnerabilitiesAll VulnerabilitiesApplications VulnerabilitiesDBMS
Node.js cordova-plugin-ionic-webview: directory traversal Synthesis of the vulnerability An attacker can traverse directories of Node.js cordova-plugin-ionic-webview, in order to read a file outside the service root path. Vulnerable products:Severity of this weakness: 2/4. Consequences of a hack: data reading.