CVE-2024-28126

2024-03-2609:57:42

jpcert

www.cve.org

cross-site scripting

0ch bbs script

web browser

arbitrary script

developer

website

product

stop using

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Cross-site scripting vulnerability exists in 0ch BBS Script ver.4.00. An arbitrary script may be executed on the web browser of the user accessing the website that uses the product. Note that the developer was unreachable, therefore, users should consider stop using 0ch BBS Script ver.4.00.

CNA Affected

[
  {
    "vendor": "Zerochannel",
    "product": "0ch BBS Script",
    "versions": [
      {
        "version": "ver.4.00",
        "status": "affected"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN46874970/