Assigner | mitre |
Reserved | 2024-06-28 |
Published | 2024-06-28 |
Updated | 2024-06-30 |
Description
R74n Sandboxels 1.9 through 1.9.5 allows XSS via a message in a modified saved-game file. This was fixed in a hotfix to 1.9.5 on 2024-06-29.
References
https://github.com/ggod2/sandboxels_xss_test
https://sandboxels.r74n.com/changelog
https://github.com/ggod2/sandboxels_xss_test/blob/main/README.md