XSS in Linkitonedevgroup Location Aware Sensor System (Lass)

CVE-2026-32843

Location Aware Sensor System by Linkit ONE, up to commit f06bd20 (2023-04-26), contains a reflected cross-site scripting vulnerability in the PM25.php file that allows remote attackers to execute arbitrary JavaScript by injecting malicious…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.001 (26.6th percentile) — read the EPSS interpretation.