PT-2022-11660 · Unknown · Tad Discuss

Geek01

Published

2022-12-21

Updated

2022-12-27

CVE-2021-4267

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions tad discuss (affected versions not specified)

Description A problematic vulnerability was found in tad discuss, affecting an unknown functionality. The manipulation of the DiscussTitle argument leads to cross-site scripting. The attack can be launched remotely.

Recommendations Apply a patch to fix this issue, specifically the patch named af94d034ff8db642d05fd8788179eab05f433958. As a temporary workaround, consider restricting the manipulation of the DiscussTitle argument to minimize the risk of exploitation.

Fix

XSS

Improper Neutralization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79CWE-707

Related Identifiers

CVE-2021-4267

Affected Products

Tad Discuss

PT-2022-11660 · Unknown · Tad Discuss

CVE-2021-4267

Weakness Enumeration

Related Identifiers

Affected Products

References · 6