[Lark Android] Vulnerability in exported activity WebView
Medium
L
Lark Technologies
Submitted None
Team Summary
Official summary from Lark Technologies
A vulnerability was found in Lark Android exported activity web view which could have potentially been used to send a malicious URL to WebView and replace the content in the application with malicious code. We thank @shell_c0de for reporting this to our team.
Actions:
Reported by
shell_c0de
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Bounty
$1000.00
Submitted
Weakness
Cross-site Scripting (XSS) - Generic