CVE-2024-22491

Description

A Stored Cross Site Scripting (XSS) vulnerability in beetl-bbs 2.0 allows attackers to run arbitrary code via the post/save content parameter.

Affected packages (1)

• Maven/com.ibeetl:beetlfrom 0, <= 2.0.0

CVSS scores

References (2)

• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-22491
• WEBhttps://github.com/cui2shark/security/blob/main/A%20stored%20cross-site%20scripting%20%28XSS%29%20vulnerability%20was%20discovered%20in%20beetl-bbs%20post%20save.md