CVE-2012-4004 Information

Description

Cross-site scripting (XSS) vulnerability in the Sleipnir Mobile application 2.2.0 and earlier and Sleipnir Mobile Black Edition application 2.2.0 and earlier for Android allows remote attackers to inject arbitrary web script or HTML via a crafted application that interacts with an unspecified Sleipnir Mobile function.

Reference

http://jvn.jp/en/jp/JVN39519659/index.html http://jvndb.jvn.jp/jvndb/JVNDB-2012-000076 https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir https://play.google.com/store/apps/details?id=jp.co.fenrir.android.sleipnir_black