Lucene search
+L

5 matches found

NVD
NVD
added 2024/01/30 6:15 p.m.26 views

CVE-2024-23841

apollo-client-nextjs is the Apollo Client support for the Next.js App Router. The @apollo/experimental-apollo-client-nextjs NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this vulnerability, an attacker would need to either inject malicious input e.g. by redirecting...

8.2CVSS7.8AI score0.00385EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/01/30 5:14 p.m.4 views

CVE-2024-23841 XSS in @apollo/experimental-nextjs-app-support

apollo-client-nextjs is the Apollo Client support for the Next.js App Router. The @apollo/experimental-apollo-client-nextjs NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this vulnerability, an attacker would need to either inject malicious input e.g. by redirecting...

8.2CVSS6.4AI score0.00385EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/01/30 5:14 p.m.43 views

CVE-2024-23841 XSS in @apollo/experimental-nextjs-app-support

apollo-client-nextjs is the Apollo Client support for the Next.js App Router. The @apollo/experimental-apollo-client-nextjs NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this vulnerability, an attacker would need to either inject malicious input e.g. by redirecting...

8.2CVSS8AI score0.00385EPSS
Exploits0References2
CVE
CVE
added 2024/01/30 5:14 p.m.94 views

CVE-2024-23841

CVE-2024-23841 affects the Next.js Apollo client integration, specifically the package @apollo/experimental-apollo-client-nextjs. The vulnerability is a cross-site scripting issue arising from improper handling of untrusted input during server-side rendering of HTML pages. Exploitation would requ...

8.2CVSS5.9AI score0.00385EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/01/30 5:14 p.m.45 views

CVE-2024-23841 XSS in @apollo/experimental-nextjs-app-support

apollo-client-nextjs is the Apollo Client support for the Next.js App Router. The @apollo/experimental-apollo-client-nextjs NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this vulnerability, an attacker would need to either inject malicious input e.g. by redirecting...

8.2CVSS6.5AI score0.00385EPSS
Exploits0References4
Rows per page
Query Builder