Medium severity6.1NVD Advisory· Published Jun 2, 2026· Updated Jun 2, 2026
CVE-2026-10510
CVE-2026-10510
Description
Cross-Site Scripting (XSS) in GeniexWebView component in Transsion AI Assistant Lifestyle application (com.transsion.aiassistantlifestyle) all versions on Android allows remote attacker to execute arbitrary JavaScript in the WebView context via crafted web_action_data URL parameter.
Affected products
1- Range: all versions
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.