Browse all 4 CVE security advisories affecting Boss Media. AI-powered Chinese analysis, POCs, and references for each vulnerability.
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2024-13859 | BuddyBoss Platform <= 2.8.50 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'bp_nouveau_ajax_media_save' function — BuddyBoss PlatformCWE-79 | 6.4 | Medium | 2025-05-02 |
| CVE-2024-13860 | BuddyBoss Platform <= 2.8.50 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'bbp_topic_title' — BuddyBoss PlatformCWE-79 | 6.4 | Medium | 2025-05-02 |
| CVE-2024-13858 | BuddyBoss Platform and BuddyBoss Theme <= Multiple Versions - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'invitee_name' — BuddyBoss ThemeCWE-79 | 6.4 | Medium | 2025-05-02 |
| CVE-2024-13402 | BuddyBoss Platform <= 2.7.70 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'link_title' — BuddyBoss PlatformCWE-79 | 6.4 | Medium | 2025-02-27 |
This page lists every published CVE security advisory associated with Boss Media. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.