Cross site scripting

2014-11-0711:55:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.8%

JSON

Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for Android allows remote attackers to inject arbitrary web script or HTML via a crafted Bluetooth Device Name field.

CPENameOperatorVersion
gwt_mobile_phonegap_showcaseeq1.6

CPE	Name	Operator	Version
	gwt_mobile_phonegap_showcase	eq	1.6

References

arxiv.org/abs/1410.7756

arxiv.org/pdf/1410.7756v1.pdf