ГлавнаяУязвимости → CVE-2024-30884
7.1высокая

CVE-2024-30884

Описание

Reflected Cross-Site Scripting (XSS) vulnerability in Discuz! version X3.4 20220811, allows remote attackers to execute arbitrary code and obtain sensitive information via crafted payload to the primarybegin parameter in the misc.php component.

Затрагиваемое ПО
Discuz Discuzx
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Источники
https://github.com/Hebing123/cve/issues/28https://github.com/Hebing123/cve/issues/28