Vulnerabilities > Traveloka

DATE CVE VULNERABILITY TITLE RISK
2019-09-21 CVE-2019-16681 Cross-site Scripting vulnerability in Traveloka 3.14.0
The Traveloka application 3.14.0 for Android exports com.traveloka.android.activity.common.WebViewActivity, leading to the opening of arbitrary URLs, which can inject deceptive content into the UI.
network
high complexity
traveloka CWE-79
4.7
4.7