This vulnerability has been received by the NVD and has not been analyzed.
A SQL injection palmy the flutter_downloader constituent done 1.11.1 for iOS allows distant attackers to bargain league tokens and overwrite arbitrary files incorrect the app's container. The interior database of the exemplary is exposed to the conception idiosyncratic if an app uses UIFileSharingEnabled and LSSupportsOpeningDocumentsInPlace properties. As a result, conception users tin get the aforesaid onslaught primitives arsenic distant attackers by tampering with the interior database of the exemplary connected the device.
CVSS 3.x Severity and Metrics:
Base Score: N/A
NVD score not yet provided.
0 alteration records recovered show changes