N/A

Improper authorization in handler for custom URL scheme issue in "Yahoo! Shopping" App for Android versions prior to 14.15.0 allows a remote unauthenticated attacker may lead a user to access an arbitrary website on the vulnerable App. As a result, the user may become a victim of a phishing attack.

N/A

自定义URL方案处理程序中的授权不正确

LY Yahoo! Shopping App 安全漏洞

LY Yahoo! Shopping App是日本LY公司的一款购物手机应用。 LY Yahoo! Shopping App 14.15.0之前版本存在安全漏洞，该漏洞源于自定义URL方案处理不当，可能导致用户成为钓鱼攻击受害者。

N/A

N/A