MOB-WEBVIEW-XSSImpact

Android WebView XSS / JS Bridge

addJavascriptInterface exposes Java methods to JS in WebView — XSS in WebView reaches the bridge and pivots to native code.

§ Where this technique fits

MOB-WEBVIEW-XSS is catalogued under the Impact tactic of the offensive-security kill-chain. It appears in 1 approved dossier in the registry, typically at step 2 on average.

§ Dossiers chaining this technique

WebView XSS → JS bridge → native code exec
WebView loads partially-attacker-controlled content (e.g. injected referral param) and exposes addJavascriptInterface — XSS in the page calls the bridge to run app-level code.
step 2 / 5

§ What commonly comes next

01
DOM-Based XSS
W-XSS-DOM · Impact
seen 1×

§ Where this technique fits

§ Dossiers chaining this technique

WebView XSS → JS bridge → native code exec

§ What commonly comes next