Vulnerabilities > Lenovo > Shareit > 3.5.98.ww

DATE CVE VULNERABILITY TITLE RISK
2016-05-23 CVE-2016-4783 Cross-site Scripting vulnerability in Lenovo Shareit 3.5.98Ww
Cross-site scripting (XSS) vulnerability in Lenovo SHAREit before 3.5.98_ww on Android before 4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "Universal XSS (UXSS)."
network
low complexity
lenovo CWE-79
6.1
6.1
2016-05-23 CVE-2016-4782 Improper Input Validation vulnerability in Lenovo Shareit 3.5.98Ww
Lenovo SHAREit before 3.5.98_ww on Android before 4.2 allows remote attackers to have unspecified impact via a crafted intent: URL, aka an "intent scheme URL attack."
network
low complexity
lenovo CWE-20
8.8
8.8