Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:8 a.m.12 views

CVE-2024-23997

Lukas Bach yana =1.0.16 is vulnerable to Cross Site Scripting XSS via src/electron-main.ts...

9.6CVSS6.1AI score0.00692EPSS
Exploits2References1
OSV
OSV
added 2024/07/05 4:15 p.m.14 views

CVE-2024-23997

Lukas Bach yana =1.0.16 is vulnerable to Cross Site Scripting XSS via src/electron-main.ts...

9.6CVSS6AI score0.00692EPSS
Exploits2References1
NVD
NVD
added 2024/07/05 4:15 p.m.33 views

CVE-2024-23997

Lukas Bach yana =1.0.16 is vulnerable to Cross Site Scripting XSS via src/electron-main.ts...

9.6CVSS0.00692EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/07/05 12:0 a.m.20 views

CVE-2024-23997

Lukas Bach yana =1.0.16 is vulnerable to Cross Site Scripting XSS via src/electron-main.ts...

6.1AI score0.00692EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/07/05 12:0 a.m.33 views

CVE-2024-23997

Lukas Bach yana =1.0.16 is vulnerable to Cross Site Scripting XSS via src/electron-main.ts...

0.00692EPSS
Exploits2References1
CNNVD
CNNVD
added 2024/07/05 12:0 a.m.5 views

Yana Security Breach

Yana is a powerful laptop application from the individual developer Lukas Bach. A security vulnerability exists in Yana version 1.0.16 and prior versions, which stems from a cross-site scripting vulnerability in the src/electron-main.ts location...

9.6CVSS6.2AI score0.00692EPSS
Exploits2References2
CVE
CVE
added 2024/07/05 12:0 a.m.54 views

CVE-2024-23997

CVE-2024-23997 affects Lukas Bach Yana prior to and including version 1.0.16, with a Cross-Site Scripting (XSS) vulnerability via src/electron-main.ts. Public sources note XSS could lead to code execution in the Electron context (e.g., when nodeIntegration is enabled or via injection in HTML). Th...

9.6CVSS6.2AI score0.00692EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder