When Notes synchronous ICloud data, is not properly filtered data lead to XSS vulnerabilities.A local user may be able to leak sensitive user information.
2015/3/28 Provide vulnerability detail to APPLE via firstname.lastname@example.org
2015/3/28 APPLE automatic reply
2015/3/29 APPLE responded that they are verifying the proof of concept code
2015/9/30 APPLE advisory disclosed，CVE-2015-5875
This vulnerability was discovered by: xisigr