Lucene search

CVE-2024-7300

🗓️ 31 Jul 2024 07:02:15Reported by VulDBType

cve🔗 web.nvd.nist.gov👁 39 Views🌐 WEB

Remote code execution in unsupported Bolt CMS 3.7.1

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
NVD	CVE-2024-7300	31 Jul 202407:15	–	nvd
Github Security Blog	Bolt CMS Cross-site Scripting vulnerability	31 Jul 202409:30	–	github
Cvelist	CVE-2024-7300 Bolt CMS Showcase Creation showcases cross site scripting	31 Jul 202407:00	–	cvelist
CNVD	Bolt CMS Cross-Site Scripting Vulnerability (CNVD-2024-35158)	5 Aug 202400:00	–	cnvd
OSV	CVE-2024-7300	31 Jul 202407:15	–	osv
OSV	GHSA-XHQW-4HCQ-FCVR Bolt CMS Cross-site Scripting vulnerability	31 Jul 202409:30	–	osv
Vulnrichment	CVE-2024-7300 Bolt CMS Showcase Creation showcases cross site scripting	31 Jul 202407:00	–	vulnrichment

Nvd

Vulners

Vulnrichment

Node

boltcms boltMatch3.7.1

[
  {
    "vendor": "Bolt",
    "product": "CMS",
    "versions": [
      {
        "version": "3.7.1",
        "status": "affected"
      }
    ],
    "modules": [
      "Showcase Creation Handler"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/
vuldb	www.vuldb.com/

Parameter	Position	Path	Description	CWE
title	request body	/bolt/editcontent/showcases	Cross Site Scripting vulnerability in the title and textarea parameters of the Showcase Creation Handler.	CWE-79
textarea	request body	/bolt/editcontent/showcases	Cross Site Scripting vulnerability in the title and textarea parameters of the Showcase Creation Handler.	CWE-79

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Jul 2024 07:15Current

3.7Low risk

Vulners AI Score3.7

CVSS24

CVSS33.5 - 5.4

CVSS45.3

EPSS0.00058

SSVC

CWE-79