Lucene search
K

14 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:40 a.m.4 views

CVE-2024-8863

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.4CVSS6AI score0.0047EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/22 11:16 a.m.9 views

CVE-2024-8101

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS5.5AI score0.00401EPSS
Exploits1References1
NVD
NVD
added 2025/03/20 10:15 a.m.11 views

CVE-2024-8101

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS0.00401EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/20 10:11 a.m.11 views

CVE-2024-8101 Stored XSS in aimhubio/aim

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS0.00401EPSS
Exploits1References1
OSV
OSV
added 2025/03/20 10:11 a.m.8 views

CVE-2024-8101 Stored XSS in aimhubio/aim

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS7.1AI score0.00401EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/03/20 10:11 a.m.7 views

CVE-2024-8101 Stored XSS in aimhubio/aim

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS6.5AI score0.00401EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:11 a.m.51 views

CVE-2024-8101

CVE-2024-8101 affects aimhubio/aim v3.23.0, specifically the Text Explorer component. The issue is a stored XSS due to dangerouslySetInnerHTML being used without proper sanitization, enabling arbitrary JavaScript execution when rendering tracked texts (during the training process). Connected sour...

7.2CVSS6.5AI score0.00401EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/09/16 2:37 p.m.8 views

GHSA-PMHG-F7WC-C97M Aim Stored XSS through TEXT EXPLORER

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.3CVSS4.3AI score0.0047EPSS
Exploits1References6
NVD
NVD
added 2024/09/14 11:15 p.m.26 views

CVE-2024-8863

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.4CVSS0.0047EPSS
Exploits1References4
OSV
OSV
added 2024/09/14 11:0 p.m.10 views

CVE-2024-8863 aimhubio aim Text Explorer textbox.tsx dangerouslySetInnerHTML cross site scripting

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.3CVSS5.9AI score0.0047EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/09/14 11:0 p.m.26 views

CVE-2024-8863 aimhubio aim Text Explorer textbox.tsx dangerouslySetInnerHTML cross site scripting

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.3CVSS0.0047EPSS
Exploits1References4
CVE
CVE
added 2024/09/14 11:0 p.m.79 views

CVE-2024-8863

The CVE-2024-8863 issue affects aimhubio Aim up to 3.24, where the Text Explorer component’s textbox.tsx uses dangerouslySetInnerHTML. The root cause is manipulation of the query argument that enables cross-site scripting. The vulnerability is remote-exploitable and public exploits have been disc...

5.4CVSS3.8AI score0.0047EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/09/14 11:0 p.m.9 views

CVE-2024-8863 aimhubio aim Text Explorer textbox.tsx dangerouslySetInnerHTML cross site scripting

A vulnerability, which was classified as problematic, was found in aimhubio aim up to 3.24. Affected is the function dangerouslySetInnerHTML of the file textbox.tsx of the component Text Explorer. The manipulation of the argument query leads to cross site scripting. It is possible to launch the...

5.3CVSS6AI score0.0047EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/09/14 12:0 a.m.5 views

PT-2024-39281

Name of the Vulnerable Software and Affected Versions: aimhubio aim versions up to 3.24 Description: A problematic issue was found in the dangerouslySetInnerHTML function of the textbox.tsx file in the Text Explorer component. The manipulation of the query argument leads to cross-site scripting. ...

5.4CVSS4.4AI score0.0047EPSS
Exploits1References16
Rows per page
Query Builder