CVE-2024-32343

Name of the Vulnerable Software and Affected Versions Boid CMS version 2.1.0

Description A cross-site scripting (XSS) vulnerability in the Create Page of Boid CMS allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Content parameter.

Recommendations For Boid CMS version 2.1.0, as a temporary workaround, consider restricting the use of the Create Page until a patch is available. Avoid using the Content parameter in the affected Create Page until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.