CVE-2025-68709

Vulnerability Description

SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a local attacker to trigger arbitrary JavaScript execution via BrowserMainActivity, which accepts VIEW intents with javascript: URIs. This unsafe navigation path results in script execution and may allow UI spoofing or privilege escalation.

Vulnerability Details

Published Date

May 26, 2026

Last Modified

May 26, 2026

Source

NVD

External References

https://github.com/actuator/com.alpha.applock
https://github.com/actuator/com.alpha.applock/blob/main/CVE-2025-68709
https://play.google.com/store/apps/details?id=com.alpha.applock

CVE-2025-68709

Vulnerability Description

Vulnerability Details

External References

Discussion (0)

Add Comment