CVE-2021-40180 Information

Description

In the WeChat application 8.0.10 for Android and iOS a mini program can obtain sensitive information from a user’s address book via wx.searchContacts.

Reference

https://arxiv.org/pdf/2205.15202.pdf https://pan.baidu.com/s/1RqMrZBruZZ4OHdnXUN5xDw https://pan.baidu.com/s/116sAQvs1CEzCeIfpI1NZvA