mobile menu
Site icon
ZIDSWORLD

The Tech Galaxy

Live support

Fix Android Webview is Vulnerable to Cross app Scripting GooglePlay Warning

Thursday, November 16, 2023, 2 AM

Have you faced this warning in your google play development console? That's because your app has a WebView that is not safe for the users.

If WebView isn't safe, attackers can steal data such as cookies of users, card details, login details etc., so as a developer, it is our responsibility to ensure that data of our users are safe when they are using our apps.

Fixing the Android WebView is vulnerable to cross scripting Error

There are some options to fix this issue, it is easy to fix this error.

Update: If you are converting your website to android app using WebView, check out our Advanced Plus WebView Source code, It is the easiest and powerful WebView source code that you can use to convert website to app in less than 30 mins. check it out here

Option A:

Go to the android Manifest, and if the web activity has the "android:exported="true"", "Change it to "android:exported="false"

This is the google recommended way to fix the problem, but this is not useful for your app if it needs receive data from external apps. in that case, we will try option B

Option B:

Go to the manifest, and add the following lines in the WebView activity, see the screenshot to get a clear understanding.

 meta-data android:name="android.webkit.WebView.EnableSafeBrowsing"
android:value="true"

Screenshot

WebView cross app scripting

That's it. Let me know in the comments if this fixed your issue.

Comments

No comments found.