Lucene search
PRIOn knowledge basePRION:CVE-2024-24558HistoryJan 30, 2024 - 8:15 p.m.
Cross site scripting
2024-01-3020:15:00
PRIOn knowledge base
www.prio-n.com
5
cross site scripting
tanstack query
npm package
vulnerability
version 5.18.0
TanStack Query supplies asynchronous state management, server-state utilities and data fetching for the web. The @tanstack/react-query-next-experimental NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this, an attacker would need to either inject malicious input or arrange to have malicious input be returned from an endpoint. To fix this issue, please update to version 5.18.0 or later.
Related
cvelist
cvelist
CVE-2024-24558 react-query-streamed-hydration xss
2024-01-30 19:36:48
nvd
nvd
CVE-2024-24558
2024-01-30 20:15:45
osv
osv
CVE-2024-24558
2024-01-30 20:15:45
react-query-streamed-hydration Cross-site Scripting vulnerability
2024-01-30 20:57:22
cve
cve
CVE-2024-24558
2024-01-30 20:15:45
github
github
react-query-streamed-hydration Cross-site Scripting vulnerability
2024-01-30 20:57:22
veracode
veracode
Cross Site Scripting (XSS)
2024-01-31 07:21:33