Webasyst 2.9.9 has a Cross-Site Scripting (XSS) vulnerability, Attackers can create blogs containing malicious code after gaining blog permissions.
History

Mon, 16 Dec 2024 19:45:00 +0000

Type Values Removed Values Added
First Time appeared Webasyst
Webasyst webasyst
CPEs cpe:2.3:a:webasyst:webasyst:2.9.9:*:*:*:*:*:*:*
Vendors & Products Webasyst
Webasyst webasyst

Thu, 29 Aug 2024 21:00:00 +0000

Type Values Removed Values Added
Weaknesses CWE-79
Metrics cvssV3_1

{'score': 5.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2024-02-28T00:00:00

Updated: 2024-08-29T17:21:19.949Z

Reserved: 2024-02-26T00:00:00

Link: CVE-2024-27517

cve-icon Vulnrichment

Updated: 2024-08-02T00:34:52.383Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-29T01:44:20.180

Modified: 2024-12-16T19:26:43.387

Link: CVE-2024-27517

cve-icon Redhat

No data.