← Back

Spark

spark

Vendor: Readdle • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-12370
1Readdle
1Spark
Nov 21, 2024
Mar 18, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
The Spark application through 2.0.2 for Android allows XSS via an event attribute and arbitrary file loading via a src attribute, if the application has the READ_EXTERNAL_STORAGE permission.