Posted by Cláudio André on Nov 17
https://labs.integrity.pt/articles/google-aosp-email-app-html-injection-2/
1. Vulnerability Properties
*Title: *Google AOSP Email App HTML Injection
*CVE ID: PendingCVSSv3 Base Score: *6.3
(AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L)
*Vendor: *Google
*Products:* AOSP Email App
*Advisory Release Date:* 16 November 2015
*Advisory URL:*
https://labs.integrity.pt/advisories/google-aosp-email-app-html-injection/
*Credits: *Discovery by Cláudio André…