Vulnerability CVE-2024-27278
Published: 2024-03-06

Description:
OpenPNE Plugin "opTimelinePlugin" 1.2.11 and earlier contains a cross-site scripting vulnerability. On the site which uses the affected product, when a user configures the profile with some malicious contents, an arbitrary script may be executed on the web browsers of other users.

 References:
http://www.openpne.jp/archives/13458/
https://jvn.jp/en/jp/JVN78084105/
Copyright 2026, cxsecurity.com

 

Back to Top