Lucene search
GoogleOSV:CVE-2024-41349HistoryAug 29, 2024 - 9:15 p.m.
CVE-2024-41349
2024-08-2921:15:10
Google
osv.dev
unmark 1.9.2
cross site scripting
add_by_url.php
vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6
Confidence
High
unmark 1.9.2 is vulnerable to Cross Site Scripting (XSS) via application/views/marks/add_by_url.php.
References
Related
cvelist
cvelist
CVE-2024-41349
2024-08-29 00:00:00
nvd
nvd
CVE-2024-41349
2024-08-29 21:15:10
vulnrichment
vulnrichment
CVE-2024-41349
2024-08-29 00:00:00
cve
cve
CVE-2024-41349
2024-08-29 21:15:10
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6
Confidence
High
Related for OSV:CVE-2024-41349