Home

Description

Cross-site scripting vulnerability exists in TvRock 0.9t8a. An arbitrary script may be executed on the web browser of the user accessing the website that uses the product. Note that the developer was unreachable, therefore, users should consider stop using TvRock 0.9t8a.

PUBLISHED Reserved 2024-03-05 | Published 2024-03-26 | Updated 2024-10-31 | Assigner jpcert

Problem types

Cross-site scripting (XSS)

Product status

0.9t8a
affected

References

jvn.jp/en/jp/JVN69107517/

cve.org (CVE-2024-26018)

nvd.nist.gov (CVE-2024-26018)

Download JSON