3 matches found
CVE-2024-38470
zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting XSS vulnerability via the $search parameter at /own.php...
CVE-2024-38469
zhimengzhe iBarn v1.5 was discovered to contain a reflected cross-site scripting XSS vulnerability via the $search parameter at /pay.php...
PT-2024-28023 · Ibarn · Ibarn
Name of the Vulnerable Software and Affected Versions: iBarn version 1.5 Description: A reflected cross-site scripting XSS issue was found, which can be triggered via the search parameter at the "/pay.php" API endpoint. Recommendations: For version 1.5, as a temporary workaround, consider...