PT-2023-14: Cross-site Scripting (XSS) in Anycomment.io

The vulnerability was identified in Anycomment.io versions before 1.6.1. The discovered vulnerability allows an attacker to inject code into a page processed by a user's browser, including JavaScript scripts. Vulnerability status: Confirmed by vendor Date of vulnerability remediation: 13.09.2023...

PT-2023-7829 · Unknown · Anycomment.Io

Name of the Vulnerable Software and Affected Versions: Anycomment.io affected versions not specified Description: The issue is related to the lack of protection for the web page structure in the comment system. This could allow a remote attacker to execute arbitrary JavaScript code...