| Naziv |
Application API Button Hijacking |
|---|---|
| Sažetak | An attacker manipulates either egress or ingress data from a client within an application framework in order to change the destination and/or content of buttons displayed to a user within API messages. Performing this attack allows the attacker to manipulate content in such a way as to produce messages or content that looks authentic but contains buttons that point to an attacker controlled destination. |
| Preduvjeti | Targeted software is utilizing application framework APIs |
| Rješenja | no |
