Vulnerabilities > Apache > Cordova > 3.9.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2016-05-09 | CVE-2015-5208 | Improper Input Validation vulnerability in Apache Cordova Apache Cordova iOS before 4.0.0 allows remote attackers to execute arbitrary plugins via a link. | 4.4 |
| 2016-05-09 | CVE-2015-5207 | Improper Access Control vulnerability in Apache Cordova Apache Cordova iOS before 4.0.0 might allow attackers to bypass a URL whitelist protection mechanism in an app and load arbitrary resources by leveraging unspecified methods. | 5.3 |