Remediation for JavaScript Interface Injection Vulnerability

  1. 5 years ago
    Edited 5 years ago by admin

    I received email from google play store team as below link:

    https://support.google.com/faqs/answer/9095419?hl=en

    Please update "Website 2 APK Pro 3.3".

    An update is out with option to remove JavaScript APIs.

    Note:

    1. If your website is running on SSL, you can safely use JS APIs without any issues.
    2. If your website runs on HTTPS, you can also use HTTPS Only mode for further security enhancement.
    3. If you run on HTTP and Google Play sent a warning, you can remove JS APIs to get the issue resolved.
  2. admin

    5 Dec 2018 Administrator
    Edited 5 years ago by admin

    @Jongchan Park We are working on the issue and will provide best possible solution as soon as possible by releasing a minor update.

    Possible quick fix: Use "HTTPS" only in your website so that it ensures there won't be any security issue.

  3. sir please resolve,,because google play can be removed all app from play store

  4. admin

    5 Feb 2019 Administrator Answer

    An update is out with option to remove JavaScript APIs.

    Note:

    1. If your website is running on SSL, you can safely use JS APIs without any issues.
    2. If your website runs on HTTPS, you can also use HTTPS Only mode for further security enhancement.
    3. If you run on HTTP and Google Play sent a warning, you can remove JS APIs to get the issue resolved.
 

or Sign Up to reply!