Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2025/02/05 2:32 a.m.8 views

CVE-2024-42346

Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon edit operation. All...

7.6CVSS6.9AI score0.00709EPSS
Exploits0References1
vulnersosv
vulnersosv
added 2024/09/20 7:15 p.m.4 views

galaxy-app (>=23.0.1 <=24.0.3), galaxy-job-execution (>=23.0.1 <=24.0.3) +11 more potentially affected by CVE-2024-42346 via galaxy-data (>=22.1.1 <=24.0.3)

galaxy-data PYPI version =22.1.1, =23.0.1, =23.0.1, =23.0.2, =21.9.0, =23.2.1, =0.4.0, =0.0.1, =0.13.0, =0.6.0, =0.1.0, =0.8.0, =0.1.0, =0.12.0 Source cves: CVE-2024-42346 Source advisory: OSV:PYSEC-2024-273...

7.6CVSS5.4AI score0.00709EPSS
Exploits0
vulnersosv
vulnersosv
added 2024/09/20 7:15 p.m.6 views

janis-pipelines (>=0.4.0 <=0.13.1), janis-pipelines-bioinformatics (>=0.0.1 <=0.12.2) +5 more potentially affected by CVE-2024-42346 via galaxy-auth (=22.1.1)

galaxy-auth PYPI version =22.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on galaxy-auth and may be impacted: - janis-pipelines =0.4.0, =0.0.1, =0.13.0, =0.6.0, =0.1.0, =0.8.0, =0.1.0, =0.12.0 Source cves: CVE-2024-42346 Source advisory:...

7.6CVSS5.4AI score0.00709EPSS
Exploits0
vulnrichment
vulnrichment
added 2024/09/20 6:53 p.m.23 views

CVE-2024-42346 Stored Cross Site Scripting (Stored XSS) in Galaxy

Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon edit operation. All...

7.6CVSS6.8AI score0.00709EPSS
Exploits0References1
cvelist
cvelist
added 2024/09/20 6:53 p.m.33 views

CVE-2024-42346 Stored Cross Site Scripting (Stored XSS) in Galaxy

Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon edit operation. All...

7.6CVSS0.00709EPSS
Exploits0References1
Rows per page
Query Builder