Volerion logoVolerion
Volerion logoVolerion

BoomCMS Cross-Frame Scripting Vulnerability

Vulnerability

A Cross-Frame Scripting (XFS) vulnerability has been identified in BoomCMS version 9.1.4, developed by UXB London. This vulnerability exploits certain browser vulnerabilities to allow JavaScript-based spying on users. XFS attacks rely on social engineering and the user's browser choice, making it a relatively minor web application security concern. Notably, this vulnerability is only effective in older browser versions.

Impact

Exploitation of this vulnerability could lead to Cross-Frame Scripting, allowing for user surveillance via JavaScript.

Added: Sep 3, 2025, 11:20 AM
Updated: Sep 3, 2025, 11:20 AM

Vulnerability Rating

Custom Algorithm
spread
1.0
impact
1.7
exploitability
6.2
remediation
0.0
relevance
0.4
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.