Beetl-bbs Project Beetl-bbs — known CVE vulnerabilities
Every CVE whose affected-product data names Beetl-bbs Project Beetl-bbs, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-22490 — CVSS 6.1 (medium): Cross Site Scripting (XSS) vulnerability in beetl-bbs 2.0 allows attackers to run arbitrary code via the /index keyword parameter.
CVE-2024-22491 — CVSS 5.4 (medium): A Stored Cross Site Scripting (XSS) vulnerability in beetl-bbs 2.0 allows attackers to run arbitrary code via the post/save content…
CVE-2022-4347 — CVSS 3.5 (low): A vulnerability was found in xiandafu beetl-bbs. It has been declared as problematic. Affected by this vulnerability is an unknown…