CNNVD-202602-012 Information
CNNVD ID
CNNVD-202602-012
Related CVE
- CNNVD Published: 2026-02-01
Description (Chinese)
dooblou WiFi File Transfer是dooblou公司的一个文件传输应用。 dooblou WiFi File Transfer 1.0.8版本存在跨站脚本漏洞,该漏洞源于文件和文件夹名称存在存储型跨站脚本漏洞,可能危及用户浏览器会话。
Description (English)
Dooblou WiFi File Transfer is a file transfer application for Dooblou. Version 1.0.8 of dooblou WiFi File Transfer has a cross-site script loophole, which stems from the existence of a storage cross-site script loophole in the file and folder name, which may endanger user browser sessions.
Hazard Level
High
Vulnerability Type
跨站脚本
Affected Vendor
Dooblou
Published
2026-02-01
Last Modified
2026-02-24
References
https://play.google.com/store/apps/details?id=com.dooblou.WiFiFileExplorerPRO&hl=en_US https://www.vulncheck.com/advisories/wifi-file-transfer-persistent-xss-via-web-server-input-validation https://www.vulnerability-lab.com/get_content.php?id=2322
Patch
https://wifi-file-transfer.en.uptodown.com/android
Share on: