Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Insufficient policy enforcement in WebView in Google Chrome on Android allowed a remote attacker to bypass site isolation via a crafted HTML page.
Advisories for Npm/React-Native-Webview package
2020