3 matches found
CVE-2024-38522
Hush Line is a free and open-source, anonymous-tip-line-as-a-service for organizations or individuals. The CSP policy applied on the tips.hushline.app website and bundled by default in this repository is trivial to bypass. This vulnerability has been patched in version 0.1.0...
CVE-2024-38522
CVE-2024-38522 affects Hush Line (CSP bypass in the tips.hushline.app site and repository). The vulnerability arises from a CSP policy that is trivial to bypass, with patched fix in version 0.1.0. The CVE shows a medium severity (CVSS v3.1: 6.3) with Network attack vector, low impact on confident...
CVE-2024-38522 CSP bypass in Hush Line
Hush Line is a free and open-source, anonymous-tip-line-as-a-service for organizations or individuals. The CSP policy applied on the tips.hushline.app website and bundled by default in this repository is trivial to bypass. This vulnerability has been patched in version 0.1.0...