CVE-2023-47883
CRITICAL WAF: Medium
CVSS 9.8
Published: 2023-12-27
CWE-94
The com.altamirano.fabricio.tvbrowser TV browser application through 4.5.1 for Android is vulnerable to JavaScript code execution via an explicit intent due to an exposed MainActivity.
WAF Coverage Analysis
Code Injection
Medium WAF Coverage
OWASP: A03:2021 Injection
932xxx - Remote Code Execution 933xxx - PHP Injection 934xxx - Node.js / Generic Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| vladymix | tv_browser | up to 4.5.1 |
References
- github.com (Exploit, Third Party Advisory)
- github.com (Exploit, Third Party Advisory)
- github.com (Exploit, Third Party Advisory)