Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/14 4:43 a.m.12 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.7AI score0.0028EPSS
Exploits0References1
NVD
NVD
added 2024/05/18 8:15 p.m.15 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.7AI score0.0028EPSS
Exploits0References2
CVE
CVE
added 2024/05/18 7:24 p.m.98 views

CVE-2024-36043

The CVE-2024-36043 issue affects SurveyJS Form Library prior to 1.10.4, where question_image.ts allows a contentMode=youtube XSS through the imageLink property. The documented impact is Cross Site Scripting via imageLink, requiring contentMode=youtube to exploit. Mitigation: upgrade to version 1....

6.1CVSS5.7AI score0.0028EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/18 7:24 p.m.31 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

5.6AI score0.0028EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/18 7:24 p.m.12 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

5.9AI score0.0028EPSS
Exploits0References2
OSV
OSV
added 2024/05/18 7:24 p.m.16 views

CVE-2024-36043

questionimage.ts in SurveyJS Form Library before 1.10.4 allows contentMode=youtube XSS via the imageLink property...

6.1CVSS5.8AI score0.0028EPSS
Exploits0References4
Rows per page
Query Builder