Security Advisory

CVE-2023-32671

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-03 12:26:44

Last updated 2024-09-06 14:09:55

Assigner INCIBE

State PUBLISHED

Description

A stored XSS vulnerability has been found on BuddyBoss Platform affecting version 2.2.9. This vulnerability allows an attacker to store a malicious javascript payload via POST request when sending an invitation.

← Browse all CVEs View on cve.org ↗