Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The wave.ai.browser application through 1.0.35 for Android allows a remote attacker to execute arbitrary JavaScript code via a crafted intent. It contains a manifest entry that exports the wave.ai.browser.ui.splash.SplashScreen activity. This activity uses a WebView component to display web content and doesn't adequately validate or sanitize the URI or any extra data passed in the intent by a third party application (with no permissions).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Wave Browser 代码注入漏洞
Vulnerability Description
Wave Browser是一个浏览器。 Wave Browser 1.0.35版本及之前版本存在安全漏洞。攻击者利用该漏洞可以执行任意JavaScript代码。
CVSS Information
N/A
Vulnerability Type
N/A