mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-18 20:48:19 +00:00
783 B
783 B
CVE-2020-12404
Description
For native-to-JS bridging the app requires a unique token to be passed that ensures non-app code can't call the bridging functions. That token could leak when used for downloading files. This vulnerability affects Firefox for iOS < 26.
POC
Reference
Github
No PoCs found on GitHub currently.