← volver
CVE-2021-33483

CVE-2021-33483

EPSS 0.6%
An issue was discovered in CommentsService.ashx in OnyakTech Comments Pro 3.8. The comment posting functionality allows an attacker to add an XSS payload to the JSON request that will execute when users visit the page with the comment.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://burninatorsec.blogspot.com/2021/07/onyaktech-comments-pro-broken.htmlhttps://twitter.com/onyaktech