Apache: >> Cordova File Transfer >> 1.2.1 Security Vulnerabilities
CRLF injection vulnerability in the Apache Cordova File Transfer Plugin (cordova-plugin-file-transfer) for Android before 1.3.0 allows remote attackers to inject arbitrary headers via CRLF sequences in the filename of an uploaded file.
CVSS Score
4.3
EPSS Score
0.014
Published
2015-12-17