Lucene search
+L

6 matches found

redhatcve
redhatcve
added 2025/02/14 4:43 a.m.12 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.7AI score0.0028EPSS
Exploits0References1
nvd
nvd
added 2024/05/18 8:15 p.m.15 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.7AI score0.0028EPSS
Exploits0References2
cvelist
cvelist
added 2024/05/18 7:24 p.m.32 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

5.6AI score0.0028EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2024/05/18 7:24 p.m.12 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

5.9AI score0.0028EPSS
Exploits0References2
cve
cve
added 2024/05/18 7:24 p.m.99 views

CVE-2024-36043

The CVE-2024-36043 issue affects SurveyJS Form Library prior to 1.10.4, where question_image.ts allows a contentMode=youtube XSS through the imageLink property. The documented impact is Cross Site Scripting via imageLink, requiring contentMode=youtube to exploit. Mitigation: upgrade to version 1....

6.1CVSS5.7AI score0.0028EPSS
Exploits0References2
osv
osv
added 2024/05/18 7:24 p.m.16 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.8AI score0.0028EPSS
Exploits0References4
Rows per page
Query Builder