Newcomer1989

**Name of the Vulnerable Software and Affected Versions** Newcomer1989 TSN-Ranksystem versions up to 1.2.6 **Description** A vulnerability has been found in Newcomer1989 TSN-Ranksystem, affecting the `getlog` function of the file `webinterface/bot.php`. The manipulation leads to cross-site scripting. The attack can be initiated remotely. **Recommendations** For Newcomer1989 TSN-Ranksystem versions up to 1.2.6, upgrade to version 1.2.7 to address this issue. As a temporary workaround, consider disabling the `getlog` function of the `webinterface/bot.php` file until the patch is applied. Restrict access to the `webinterface/bot.php` file to minimize the risk of exploitation.