Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:26 a.m.7 views

CVE-2024-5933

A Cross-site Scripting XSS vulnerability exists in the chat functionality of parisneo/lollms-webui in the latest version. This vulnerability allows an attacker to inject malicious scripts via chat messages, which are then executed in the context of the user's browser...

6.1CVSS5.2AI score0.00351EPSS
Exploits1References1
CVE
CVE
added 2024/06/27 6:46 p.m.54 views

CVE-2024-5933

CVE-2024-5933 affects parisneo/lollms-webui (chat functionality). The connected documents consistently describe a Cross-site Scripting (XSS) vulnerability where chat messages can inject and execute malicious scripts in the user’s browser. Root cause is un-sanitized input in the chat path of the w...

6.1CVSS5.6AI score0.00351EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/27 6:46 p.m.16 views

CVE-2024-5933 Cross-site Scripting (XSS) in parisneo/lollms-webui

A Cross-site Scripting XSS vulnerability exists in the chat functionality of parisneo/lollms-webui in the latest version. This vulnerability allows an attacker to inject malicious scripts via chat messages, which are then executed in the context of the user's browser...

6.1CVSS6AI score0.00351EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/06/27 6:46 p.m.37 views

CVE-2024-5933 Cross-site Scripting (XSS) in parisneo/lollms-webui

A Cross-site Scripting XSS vulnerability exists in the chat functionality of parisneo/lollms-webui in the latest version. This vulnerability allows an attacker to inject malicious scripts via chat messages, which are then executed in the context of the user's browser...

6.1CVSS0.00351EPSS
Exploits1References1
Rows per page
Query Builder