GoCD server versions 19.4.0 to 23.5.0 are vulnerable to reflected cross-site scripting via redirect_to paramete
Reporter | Title | Published | Views | Family All 5 |
---|---|---|---|---|
![]() | CVE-2024-28866 | 14 May 202415:14 | – | osv |
![]() | GoCD: XSS in new.loading.page.html | 16 Mar 202422:27 | – | hackerone |
![]() | CVE-2024-28866 GoCD vulnerable to reflected Cross-site Scripting possible on server loading page during start-up | 13 May 202413:53 | – | cvelist |
![]() | CVE-2024-28866 GoCD vulnerable to reflected Cross-site Scripting possible on server loading page during start-up | 13 May 202413:53 | – | vulnrichment |
![]() | CVE-2024-28866 | 14 May 202415:14 | – | nvd |
[
{
"vendor": "gocd",
"product": "gocd",
"versions": [
{
"version": ">= 19.4.0, < 24.1.0",
"status": "affected"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo