Description
Stored XSS and SQL injection vulnerability in MaxBoard could lead to occur Remote Code Execution, which could lead to information exposure and privilege escalation.
References
https://www.krcert.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=66781
Third Party Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
9.6 · Critical
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2022-06-23T17:15:11.157
3 years agoLast modified
2022-06-29T18:02:56.090
3 years ago