2 matches found
CVE-2024-26467
CVE-2024-26467 affects the tabatkins/railroad-diagrams project, specifically the generator.html component. A DOM-based cross-site scripting (XSS) flaw is present in versions before commit ea9a123, allowing an attacker to execute arbitrary JavaScript by sending a crafted URL. The issue is triggere...
CVE-2024-26467
A DOM based cross-site scripting XSS vulnerability in the component generator.html of tabatkins/railroad-diagrams before commit ea9a123 allows attackers to execute arbitrary Javascript via sending a crafted URL...