Lucene search
Japan Vulnerability NotesJVN:65660590HistoryJun 30, 2021 - 12:00 a.m.
JVN#65660590: boastMachine vulnerable to cross-site scripting
2021-06-3000:00:00
Japan Vulnerability Notes
jvn.jp
11
boastmachine
cross-site scripting
vulnerability
all versions
knadh
cwe-79
unsupported
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.005
Percentile
76.1%
boastMachine provided by knadh contains a cross-site scripting vulnerability (CWE-79).
Impact
An arbitrary script may be executed on the user’s web browser.
Solution
Stop using “boastMachine”
The developer states that the product is no longer supported, therefore stop using the product.
Products Affected
- boastMachine all versions
Related
cvelist
cvelist
CVE-2007-2932
2007-05-31 00:00:00
exploitdb
exploitdb
BoastMachine 3.1 - 'index.php' Cross-Site Scripting
2007-05-25 00:00:00
cve
cve
CVE-2007-2932
2007-05-31 00:30:00
nvd
nvd
CVE-2007-2932
2007-05-31 00:30:00
prion
prion
Cross site scripting
2007-05-31 00:30:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.005
Percentile
76.1%
Related for JVN:65660590