VDB-228167 · CVE-2023-2560 · GCVE-100-228167

jja8 NewBingGoGo ଯେପର୍ଯ୍ୟନ୍ତ 2023.5.5.2 କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ

Rakkoon nageenyaa kan ସମସ୍ୟାଜନକ jedhamuun beekamu jja8 NewBingGoGo ଯେପର୍ଯ୍ୟନ୍ତ 2023.5.5.2 keessatti argameera. Miidhamni argame is hojii hin beekamne. Wanti jijjiirame gara କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ geessa. Rakkoo ibsuuf CWE yoo fayyadamte gara CWE-79 si geessa. Odeeffannoon kun yeroo 05/06/2023 maxxanfameera. Odeeffannoon kun buufachuuf gitee.com irratti argama. Dogoggorri kun CVE-2023-2560 jedhamee waamama. Weerara fageenya irraa jalqabuu ni danda'ama. Ibsa teeknikaa hin jiru. Waan dabalataa ta’een, meeshaa balaa kana fayyadamuuf ni jira. Qorannoo miidhaa (exploit) uummataaf ifa taasifameera, kanaafis fayyadamuu ni danda'ama. Ammas, gatii exploit might be approx. USD $0-$5k yeroo ammaa irratti argamuu danda'a. ପ୍ରୁଫ୍-ଅଫ୍-କନ୍ସେପ୍ଟ ta’uu isaa ibsameera. Exploit gitee.com irraa buufachuun ni danda'ama. Akka 0-daytti, gatiin isaa daldala dhoksaa keessatti $0-$5k akka ta'e tilmaamameera. If you want to get the best quality for vulnerability data then you always have to consider VulDB.

3 ଆଡାପ୍ଟେସନ୍ · 69 ପଏଣ୍ଟ

ଫିଲ୍ଡ	ସୃଷ୍ଟି ହୋଇଛି 05/06/2023 11:39 AM	ଅଦ୍ୟତନ 1/2 05/28/2023 02:52 PM	ଅଦ୍ୟତନ 2/2 05/28/2023 02:56 PM
software_vendor	jja8	jja8	jja8
software_name	NewBingGoGo	NewBingGoGo	NewBingGoGo
software_version	<=2023.5.5.2	<=2023.5.5.2	<=2023.5.5.2
vulnerability_cwe	CWE-79 (କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ)	CWE-79 (କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ)	CWE-79 (କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ)
vulnerability_risk	1	1	1
cvss3_vuldb_av	N	N	N
cvss3_vuldb_ac	L	L	L
cvss3_vuldb_ui	R	R	R
cvss3_vuldb_s	U	U	U
cvss3_vuldb_c	N	N	N
cvss3_vuldb_i	L	L	L
cvss3_vuldb_a	N	N	N
cvss3_vuldb_e	P	P	P
cvss3_vuldb_rc	C	C	C
advisory_url	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E
exploit_availability	1	1	1
exploit_publicity	1	1	1
exploit_url	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E	https://gitee.com/jja8/NewBingGoGo/issues/I6WH2E
source_cve	CVE-2023-2560	CVE-2023-2560	CVE-2023-2560
cna_responsible	VulDB	VulDB	VulDB
advisory_date	1683324000 (05/06/2023)	1683324000 (05/06/2023)	1683324000 (05/06/2023)
cvss2_vuldb_av	N	N	N
cvss2_vuldb_ac	L	L	L
cvss2_vuldb_ci	N	N	N
cvss2_vuldb_ii	P	P	P
cvss2_vuldb_ai	N	N	N
cvss2_vuldb_e	POC	POC	POC
cvss2_vuldb_rc	C	C	C
cvss2_vuldb_au	S	S	S
cvss2_vuldb_rl	ND	ND	ND
cvss3_vuldb_pr	L	L	L
cvss3_vuldb_rl	X	X	X
cvss2_vuldb_basescore	4.0	4.0	4.0
cvss2_vuldb_tempscore	3.6	3.6	3.6
cvss3_vuldb_basescore	3.5	3.5	3.5
cvss3_vuldb_tempscore	3.3	3.3	3.3
cvss3_meta_basescore	3.5	3.5	4.4
cvss3_meta_tempscore	3.3	3.3	4.3
price_0day	$0-$5k	$0-$5k	$0-$5k
cve_assigned		1683324000 (05/06/2023)	1683324000 (05/06/2023)
cve_nvd_summary		A vulnerability was found in jja8 NewBingGoGo up to 2023.5.5.2. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-228167.	A vulnerability was found in jja8 NewBingGoGo up to 2023.5.5.2. It has been rated as problematic. This issue affects some unknown processing. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-228167.
cvss3_nvd_av			N
cvss3_nvd_ac			L
cvss3_nvd_pr			N
cvss3_nvd_ui			R
cvss3_nvd_s			C
cvss3_nvd_c			L
cvss3_nvd_i			L
cvss3_nvd_a			N
cvss2_nvd_av			N
cvss2_nvd_ac			L
cvss2_nvd_au			S
cvss2_nvd_ci			N
cvss2_nvd_ii			P
cvss2_nvd_ai			N
cvss3_cna_av			N
cvss3_cna_ac			L
cvss3_cna_pr			L
cvss3_cna_ui			R
cvss3_cna_s			U
cvss3_cna_c			N
cvss3_cna_i			L
cvss3_cna_a			N
cve_cna			VulDB
cvss2_nvd_basescore			4.0
cvss3_nvd_basescore			6.1
cvss3_cna_basescore			3.5

◂ ପଛକୁ ସମୀକ୍ଷା ଆହୁରି ଦୂରରେ ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!