Lucene search

CVE-2024-32469 Decidim has cross-site scripting (XSS) in the pagination

🗓️ 10 Jul 2024 19:36:10Reported by GitHub_MType

Decidim 0.27.6 and 0.28.1 fixed XSS in paginatio

Reporter	Title	Published	Views	Family All 7
RubySec	Decidim cross-site scripting (XSS) in the pagination	9 Jul 202421:00	–	rubygems
NVD	CVE-2024-32469	10 Jul 202419:15	–	nvd
OSV	GHSA-7CX8-44PC-XV3Q Decidim cross-site scripting (XSS) in the pagination	10 Jul 202415:43	–	osv
Veracode	Cross Site Scripting (XSS)	11 Jul 202406:27	–	veracode
Github Security Blog	Decidim cross-site scripting (XSS) in the pagination	10 Jul 202415:43	–	github
Vulnrichment	CVE-2024-32469 Decidim has cross-site scripting (XSS) in the pagination	10 Jul 202419:10	–	vulnrichment
CVE	CVE-2024-32469	10 Jul 202419:15	–	cve

[
  {
    "vendor": "decidim",
    "product": "decidim",
    "versions": [
      {
        "version": "< 0.27.6",
        "status": "affected"
      },
      {
        "version": ">= 0.28.0.rc1, < 0.28.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/decidim/decidim/releases/tag/v0.27.6
github	www.github.com/decidim/decidim/security/advisories/GHSA-7cx8-44pc-xv3q
github	www.github.com/decidim/decidim/releases/tag/v0.28.1

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jul 2024 19:10Current

CVSS37.1

EPSS0.00045

CWE-79