CVE-2016-15008

A vulnerability was found in oxguy3 coebot-www and classified as problematic. This issue affects the function displayChannelCommands/displayChannelQuotes/displayChannelAutoreplies/showChannelHighlights/showChannelBoir of the file js/channel.js. The manipulation leads to cross site scripting. The attack may be initiated remotely. The patch is named c1a6c44092585da4236237e0e7da94ee2996a0ca. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217355.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:coebot-www_project:coebot-www:*:*:*:*:*:coebot:*:*

History

07 Nov 2023, 02:29

Type Values Removed Values Added
CWE CWE-79

20 Oct 2023, 10:15

Type Values Removed Values Added
CWE CWE-79
Summary A vulnerability was found in oxguy3 coebot-www and classified as problematic. This issue affects the function displayChannelCommands/displayChannelQuotes/displayChannelAutoreplies/showChannelHighlights/showChannelBoir of the file js/channel.js. The manipulation leads to cross site scripting. The attack may be initiated remotely. The name of the patch is c1a6c44092585da4236237e0e7da94ee2996a0ca. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217355. A vulnerability was found in oxguy3 coebot-www and classified as problematic. This issue affects the function displayChannelCommands/displayChannelQuotes/displayChannelAutoreplies/showChannelHighlights/showChannelBoir of the file js/channel.js. The manipulation leads to cross site scripting. The attack may be initiated remotely. The patch is named c1a6c44092585da4236237e0e7da94ee2996a0ca. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217355.

Information

Published : 2023-01-04 10:15

Updated : 2024-05-17 01:08


NVD link : CVE-2016-15008

Mitre link : CVE-2016-15008

CVE.ORG link : CVE-2016-15008


JSON object : View

Products Affected

coebot-www_project

  • coebot-www
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')