netFlux

05 Jun 2014

Code Injection Attacks on HTML5-based Mobile Apps

Knowing that JavaScript is subject to code injection attacks, we have conducted a systematic study on HTML5-based mobile apps, trying to evaluate whether it is safe to rely on the web technologies for mobile app development. Our discoveries are quite surprising.