Lucene search
PostgreSQLCVELIST:CVE-2024-4216HistoryMay 02, 2024 - 5:42 p.m.
CVE-2024-4216 XSS vulnerability in /settings/store API response json payload in pgAdmin 4
2024-05-0217:42:59
PostgreSQL
www.cve.org
cve-2024-4216
xss
pgadmin 4
api
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
pgAdmin <= 8.5 is affected by XSS vulnerability in /settings/store API response json payload. This vulnerability allows attackers to execute malicious script at the client end.
CNA Affected
[
{
"defaultStatus": "affected",
"modules": [
"pgadmin layout"
],
"product": "pgAdmin 4",
"programFiles": [
"https://github.com/pgadmin-org/pgadmin4/blob/master/web/pgadmin/browser/templates/browser/js/utils.js"
],
"repo": "https://github.com/pgadmin-org/pgadmin4",
"vendor": "pgadmin.org",
"versions": [
{
"lessThan": "8.6",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2024-4216
2024-05-02 18:15:07
osv
osv
nvd
nvd
CVE-2024-4216
2024-05-02 18:15:07
veracode
veracode
Cross-Site Scripting (XSS)
2024-05-06 07:00:32
vulnrichment
vulnrichment
github
github
fedora
fedora
[SECURITY] Fedora 40 Update: pgadmin4-8.6-1.fc40
2024-05-23 01:09:17
[SECURITY] Fedora 40 Update: python-libgravatar-1.0.4-1.fc40
2024-05-23 01:09:17
openvas
openvas
Fedora: Security Advisory for pgadmin4 (FEDORA-2024-4d4ceb61f7)
2024-05-27 00:00:00
Fedora: Security Advisory for python-libgravatar (FEDORA-2024-4d4ceb61f7)
2024-05-27 00:00:00
nessus
nessus
Fedora 40 : pgadmin4 / python-libgravatar (2024-4d4ceb61f7)
2024-05-23 00:00:00
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2024-4216