Cross Site Scripting (XSS) Vulnerability in JavaQuarkBBS <= v2

Cross Site Scripting (XSS) Vulnerability in JavaQuarkBBS <= v2

CVE-2021-46030 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

There is a Cross Site Scripting attack (XSS) vulnerability in JavaQuarkBBS <= v2. By entering specific statements into the background tag management module, the attack statement will be stored in the database, and the next victim will be attacked when he accesses the tag module.

Learn more about our Web Application Penetration Testing UK.