Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:45 p.m.13 views

CVE-2022-24833

PrivateBin is minimalist, open source online pastebin clone where the server has zero knowledge of pasted data. In PrivateBin v1.4.0 a cross-site scripting XSS vulnerability was found. The vulnerability is present in all versions from v0.21 of the project, which was at the time still called...

8.2CVSS5.6AI score0.01271EPSS
Exploits1References1
CVE
CVE
added 2022/04/11 8:20 p.m.100 views

CVE-2022-24833

CVE-2022-24833 is a Persistent XSS in PrivateBin caused by SVG attachments with JavaScript before v1.4.0. The issue originates from how image previews were rendered for attachments (introduced around v0.21) and could execute code when a user opened a crafted SVG, bypassed or mishandled CSP. Affec...

8.2CVSS6AI score0.01271EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/11 8:20 p.m.7 views

CVE-2022-24833 Persistent Cross-site Scripting (XSS) vulnerability in PrivateBin

PrivateBin is minimalist, open source online pastebin clone where the server has zero knowledge of pasted data. In PrivateBin v1.4.0 a cross-site scripting XSS vulnerability was found. The vulnerability is present in all versions from v0.21 of the project, which was at the time still called...

8.2CVSS7.3AI score0.01271EPSS
Exploits1References2
Circl
Circl
added 2022/04/09 1:10 p.m.7 views

CVE-2022-24833

creationtimestamp| type| source ---|---|--- 2022-04-09 13:10:43+00:00| published-proof-of-concept| https://github.com/PrivateBin/PrivateBin/security/advisories/GHSA-cqcc-mm6x-vmvw 2022-04-12 00:22:28+00:00| seen| https://t.me/cibsecurity/40530...

8.2CVSS6.8AI score0.01271EPSS
Exploits1References2
Rows per page
Query Builder