PT-2023-9871 · Unknown · Capnsquarepants Wordcraft
Publicado
2023-01-29
·
Atualizado
2024-06-07
·
CVE-2009-10003
CVSS v2.0
4.0
Média
| Vetor | AV:N/AC:L/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
capnsquarepants wordcraft versions up to 0.6
Description
A vulnerability was found in the software, classified as problematic. It affects an unknown function of the file tag.php. The manipulation of the
tag argument leads to cross-site scripting. This attack can be launched remotely.Recommendations
For versions up to 0.6, upgrade to version 0.7 to address this issue. As a temporary workaround, consider restricting the use of the
tag argument in the affected function until the upgrade is applied.Correção
XSS
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Capnsquarepants Wordcraft