2024-03-05 05:00:36 +00:00
{
2024-04-02 14:17:32 +00:00
"data_version" : "4.0" ,
2024-03-05 05:00:36 +00:00
"data_type" : "CVE" ,
"data_format" : "MITRE" ,
"CVE_data_meta" : {
"ID" : "CVE-2024-28034" ,
2024-04-02 14:17:32 +00:00
"ASSIGNER" : "vultures@jpcert.or.jp" ,
"STATE" : "PUBLIC"
2024-03-05 05:00:36 +00:00
} ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2024-04-02 14:17:32 +00:00
"value" : "Cross-site scripting vulnerability exists in Mini Thread Version 3.33\u03b2i. An arbitrary script may be executed on the web browser of the user accessing the website that uses the product. Note that the developer was unreachable, therefore, users should consider stop using Mini Thread Version 3.33\u03b2i."
}
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Cross-site scripting (XSS)"
}
]
}
]
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "Flash CGI" ,
"product" : {
"product_data" : [
{
"product_name" : "Mini Thread" ,
"version" : {
"version_data" : [
{
"version_affected" : "=" ,
"version_value" : "Version 3.33\u03b2i"
}
]
}
}
]
}
}
]
}
} ,
"references" : {
"reference_data" : [
{
"url" : "https://jvn.jp/en/jp/JVN40523785/" ,
"refsource" : "MISC" ,
"name" : "https://jvn.jp/en/jp/JVN40523785/"
2024-03-05 05:00:36 +00:00
}
]
}
}
