ByteOS Network

NVD Vulnerability Details :

CVE-2024-3687

Deferred

Source-cna@vuldb.com

Published At-12 Apr, 2024 | 14:15

Updated At-15 Apr, 2026 | 00:35

A vulnerability was found in bihell Dice 3.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-260474 is the identifier assigned to this vulnerability.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	3.5	LOW	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N
Secondary	2.0	4.0	MEDIUM	AV:N/AC:L/Au:S/C:N/I:P/A:N

Type: Secondary

Version: 3.1

Base score: 3.5

Base severity: LOW

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Type: Secondary

Version: 2.0

Base score: 4.0

Base severity: MEDIUM

Vector:

AV:N/AC:L/Au:S/C:N/I:P/A:N

Weaknesses

CWE ID	Type	Source
CWE-79	Secondary	cna@vuldb.com

CWE ID: CWE-79

Type: Secondary

Source: cna@vuldb.com

References

Hyperlink	Source	Resource
https://github.com/fubxx/CVE/blob/main/DiceCMS-XSS.md	cna@vuldb.com	N/A
https://vuldb.com/?ctiid.260474	cna@vuldb.com	N/A
https://vuldb.com/?id.260474	cna@vuldb.com	N/A
https://vuldb.com/?submit.309445	cna@vuldb.com	N/A
https://github.com/fubxx/CVE/blob/main/DiceCMS-XSS.md	af854a3a-2127-422b-91ae-364da2661108	N/A
https://vuldb.com/?ctiid.260474	af854a3a-2127-422b-91ae-364da2661108	N/A
https://vuldb.com/?id.260474	af854a3a-2127-422b-91ae-364da2661108	N/A
https://vuldb.com/?submit.309445	af854a3a-2127-422b-91ae-364da2661108	N/A