ГлавнаяУязвимости → CVE-2024-31609
7.1высокая

CVE-2024-31609

Описание

Cross Site Scripting (XSS) vulnerability in BOSSCMS v3.10 allows attackers to run arbitrary code via the header code and footer code fields in code configuration.

Затрагиваемое ПО
Bosscms Bosscms
CVSS
Балл7.1 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Источники
https://github.com/ss122-0ss/BOSSCMS/blob/main/readme.mdhttps://github.com/ss122-0ss/BOSSCMS/blob/main/readme.md