CVE-2024-43381

Name of the Vulnerable Software and Affected Versions reNgine versions 2.1.2 and prior

Description The issue occurs when scanning a domain, and if the target domain's DNS record contains an XSS payload, it leads to the execution of malicious scripts in the reNgine's dashboard view when any user views the scan results. The XSS payload is directly fetched from the DNS record of the remote target domain. Consequently, an attacker can execute the attack without requiring any additional input from the target or the reNgine user.

Recommendations For versions 2.1.2 and prior, update to version 2.1.3 or later, which is expected to include a patch for this issue. As a temporary workaround, consider restricting access to the dashboard view or disabling the scanning feature for domains with potentially malicious DNS records until the patch is applied.