CVE-2015-5256

Name of the Vulnerable Software and Affected Versions Apache Cordova-Android versions prior to 4.1.0

Description The issue arises from an improper implementation of a JavaScript whitelist protection mechanism in applications that rely on a remote server. This allows attackers to bypass intended access restrictions by using a crafted URI.

Recommendations For versions prior to 4.1.0, update to version 4.1.0 or later to resolve the issue.