Overview
- Description
- AIML Chatbot 1.0 (fixed in 2.0) is vulnerable to Cross Site Scripting (XSS). The vulnerability is exploited through the message input field, where attackers can inject malicious HTML or JavaScript code. The chatbot fails to sanitize these inputs, leading to the execution of malicious scripts.
- Source
- cve@mitre.org
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 6.1
- Impact score
- 2.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
Weaknesses
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-79
Social media
- Hype score
- Not currently trending
CVE-2024-48396 AIML Chatbot 1.0 (fixed in 2.0) is vulnerable to Cross Site Scripting (XSS). The vulnerability is exploited through the message input field, where attackers can inject malicious HTML or JavaScript c... https://t.co/FB3L3Hmmr6
@VulmonFeeds
26 Oct 2024
42 Impressions
2 Retweets
2 Likes
1 Bookmark
0 Replies
0 Quotes
CVE-2024-48396 AIML Chatbot 1.0 (fixed in 2.0) is vulnerable to Cross Site Scripting (XSS). The vulnerability is exploited through the message input field, where attackers can injec… https://t.co/tOaF5UKiDH
@CVEnew
25 Oct 2024
213 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes