PT-2026-26656 · Unknown · Atjiu Pybbs
Xcxr
·
Published
2026-03-20
·
Updated
2026-03-20
·
CVE-2026-4495
CVSS v2.0
4.0
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
atjiu pybbs version 6.0.0
Description
A security issue exists in atjiu pybbs 6.0.0. The
create function within the file src/main/java/co/yiiu/pybbs/controller/api/CommentApiController.java is susceptible to cross site scripting. This allows for remote attacks. An exploit for this issue has been publicly released. The create function is vulnerable.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
XSS
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Atjiu Pybbs