4 matches found
CVE-2024-53262
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. The static error.html template for errors contains placeholders that are replaced without escaping the content first. error.html is the page that is rendered when everything else fails. It can contai...
CVE-2024-53262
creationtimestamp| type| source ---|---|--- 2024-11-25 19:18:26+00:00| seen| https://infosec.exchange/users/cve/statuses/113545203299807277...
CVE-2024-53262 Unescaped error message included on error page in SvelteKit
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. The static error.html template for errors contains placeholders that are replaced without escaping the content first. error.html is the page that is rendered when everything else fails. It can contai...
@2077collective/persona (>=0.0.1 <=0.0.3), @acudac/md3-svelte (>=1.1.2 <=1.1.19) +385 more potentially affected by CVE-2024-53262 via @sveltejs/kit (>=1.0.0-next.100 <=2.8.1)
@sveltejs/kit NPM version =1.0.0-next.100, =0.0.1, =1.1.2, =1.0.1, =1.0.183, =0.0.1, =0.3.0, =0.5.7, =0.0.1-alpha.1, =0.6.1, =0.0.7, =0.1.0, =0.0.9, =2.0.0, =2.0.0, =0.4.4, =0.4.81 and more Source cves: CVE-2024-53262 Source advisory: OSV:GHSA-MH2X-FCQH-FMQV...