4 matches found
CVE-2022-24864
Origin Protocol is a blockchain based project. The Origin Protocol project website allows for malicious users to inject malicious Javascript via a POST request to /presale/join. User-controlled data is passed with no sanitization to SendGrid and injected into an email that is delivered to the...
CVE-2022-24864
creationtimestamp| type| source ---|---|--- 2022-04-20 22:25:52+00:00| seen| https://t.me/cibsecurity/41193...
CVE-2022-24864 Malicious Javascript injection in OriginProtocol/origin-website
Origin Protocol is a blockchain based project. The Origin Protocol project website allows for malicious users to inject malicious Javascript via a POST request to /presale/join. User-controlled data is passed with no sanitization to SendGrid and injected into an email that is delivered to the...
CVE-2022-24864
CVE-2022-24864 affects Origin Protocol’s origin-website: an attacker can inject malicious JavaScript by posting to /presale/join. User-controlled data is sent to SendGrid without sanitization and inserted into an email addressed to [email protected]. If the recipient’s email client is s...