CVE-2024-28126

CVSS v3.1

6.1

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions 0ch BBS Script version 4.00

Description A cross-site scripting vulnerability exists in the product, allowing an arbitrary script to be executed on the web browser of the user accessing the website that uses the product. The developer was unreachable, and users should consider stopping the use of 0ch BBS Script ver.4.00.

Recommendations For 0ch BBS Script version 4.00, consider stopping the use of this version as the developer is unreachable, and no fix is available. As a temporary workaround, consider implementing additional security measures to restrict the execution of arbitrary scripts on the web browser.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2024-28126

Affected Products

0Ch Bbs Script

CVE-2024-28126

Weakness Enumeration

Related Identifiers

Affected Products

References · 7