SailingLab AppLock JavaScript Execution Vulnerability in BrowserMainActivity

Vulnerability

A vulnerability in SailingLab AppLock version 4.3.8 for Android allows local attackers to execute arbitrary JavaScript. This issue arises in the BrowserMainActivity component, which accepts VIEW intents containing javascript: URIs. The vulnerability could lead to unauthorized script execution, potentially allowing for UI spoofing or privilege escalation.

Impact

Exploitation of this vulnerability could result in arbitrary code execution within the application's context, with possible implications for UI spoofing or unauthorized privilege escalation.

Added: May 26, 2026, 10:14 PM

Updated: May 26, 2026, 10:14 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

3.3

remediation

0.0

relevance

9.6

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SailingLab AppLock JavaScript Execution Vulnerability in BrowserMainActivity

Vulnerability

Impact

Affected Products

SailingLab AppLock

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating