The TwitRocker2 application before 1.0.23 for Android does not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-200,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| studiohitori | twitrocker2_android | 1.0.19 |
| studiohitori | twitrocker2_android | 1.0.18 |
| studiohitori | twitrocker2_android | 1.0.20 |
| studiohitori | twitrocker2_android | 1.0.21 |
| studiohitori | twitrocker2_android | 1.0.22 |