CVE-2024-7204 in QbiBotinfo

Zusammenfassung

von MITRE • 02.08.2024

Ai3 QbiBot does not properly filter user input, allowing unauthenticated remote attackers to insert JavaScript code into the chat box. Once the recipient views the message, they will be subject to a Stored XSS attack.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

Twcert

Reservieren

29.07.2024

Veröffentlichung

02.08.2024

Moderieren

akzeptiert

Eintrag

VDB-273499

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

6.1 (CNA)

EPSS

0.00321

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-7204
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-7204
CVE Details	https://www.cvedetails.com/cve/CVE-2024-7204/

◂ Zurück Übersicht Weiter ▸

Do you need the next level of professionalism?

Upgrade your account now!