Hi, addjavascriptinterface method for webview is potentially very harmful in older versions of android as it exposes native java functions. The android team now allows to annotate the functions that we want to expose, but the older versions are still vulnerable. Do you have any suggestions/workaround for app running on older versions to mitigate the threat?
- Rohit -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss. For more options, visit https://groups.google.com/groups/opt_out.
