Information from iChain, Inc.

Versions of "iChain Insurance Wallet" prior to 1.3.0 has vulnerable to Path Traversal caused by versions of cordova-plugin-ionic-webview prior to 2.2.0 used in the app. It allows attackers access to OS local files that should be inaccessible by third-party applications.
The solution for this vulnerability is to update to ver. 1.4.0 or later.