CVE-2015-1835

Published: 2017-10-27T19:29Z

Last Modified: 2024-11-21T02:26Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Apache Cordova Android before 3.7.2 and 4.x before 4.0.2, when an application does not set explicit values in config.xml, allows remote attackers to modify undefined secondary configuration variables (preferences) via a crafted intent: URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt