3 matches found
EUVD-2024-3271
Malicious code in bioql PyPI...
Cross-site Scripting (XSS)
Overview Affected versions of this package are vulnerable to Cross-site Scripting XSS via the online or hybrid meeting embeds. Workaround Users who are not able to upgrade to the fixed version can disable the creation of meetings by participants in the meeting component. Details Cross-site...
CVE-2024-45594 Decidim allows cross-site scripting (XSS) in the online or hybrid meeting embeds
Decidim is a participatory democracy framework. The meeting embeds feature used in the online or hybrid meetings is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.28.3 and 0.29.0...