Lucene search
+L

10 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:10 p.m.4 views

CVE-2026-32843

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS6AI score0.00454EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/19 3:31 p.m.8 views

EUVD-2026-13113

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS6AI score0.00454EPSS
Exploits0References3
NVD
NVD
added 2026/03/19 3:16 p.m.4 views

CVE-2026-32843

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS0.00454EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/19 2:39 p.m.3 views

CVE-2026-32843 Linkit ONE Location Aware Sensor System (LASS) Reflected XSS via PM25.php

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS6AI score0.00454EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/19 2:39 p.m.3 views

CVE-2026-32843

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS6AI score0.00454EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/19 2:39 p.m.25 views

CVE-2026-32843 Linkit ONE Location Aware Sensor System (LASS) Reflected XSS via PM25.php

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 2023-04-26, contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious code into GET parameters. Attackers can craft a malicious U...

5.1CVSS0.00454EPSS
Exploits0References2
CVE
CVE
added 2026/03/19 2:39 p.m.13 views

CVE-2026-32843

A reflected cross-site scripting (XSS) vulnerability affects Location Aware Sensor System by LinkIt ONE up to commit f06bd20 (2023-04-26) in PM25.php. The issue arises from allowing unencoded payloads via GET parameters (site, city, district, channel, or apikey), enabling remote attackers to exec...

5.1CVSS6AI score0.00454EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/07/06 12:0 a.m.5 views

SoK: a Systematic Review of Context- and Behavior-Aware Adaptive Authentication in Mobile Environments

As mobile computing becomes central to digital interaction, researchers have turned their attention to adaptive authentication for its real-time, context- and behavior-aware verification capabilities. However, many implementations remain fragmented, inconsistently apply intelligent techniques, an...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2014/02/20 7:13 p.m.13 views

Tinder Patches Vulnerability That Exposed User Locations

Developers with the popular dating application Tinder have fixed a vulnerability that up until last year could’ve allowed users to track other users, thanks to a hole in the app’s API and some old fashioned trigonometry. Max Veytsman, a Toronto-based researcher with Include Security disclosed the...

6.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2010/01/05 9:18 p.m.14 views

New Attack Locates Web Users Via XSS, Google Data

The security researcher who created the MySpace XSS worm in 2005 has developed a technique that enables an attacker to accurately locate a Web user with GPS coordinates, without using IP-based geolocation. Samy Kamkar, the author of the infamous Samy worm that spread through MySpace, on Monday...

0.6AI score
Exploits0References5
Rows per page
Query Builder