Lucene search
Veracode Vulnerability DatabaseVERACODE:34975HistoryApr 05, 2022 - 12:08 p.m.
Cross-Site Scripting (XSS)
2022-04-0512:08:46
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
0.001 Low
EPSS
Percentile
35.2%
directus is vulnerable to cross-site scripting. The vulnerability exists because the live embed in the WYSIWYG is not disabled which allows an attacker to inject and execute arbitrary javascript.
Related
cnvd
cnvd
Directus Cross-Site Scripting Vulnerability (CNVD-2022-81371)
2022-04-07 00:00:00
prion
prion
Design/Logic Flaw
2022-04-04 18:15:00
nvd
nvd
CVE-2022-24814
2022-04-04 18:15:08
github
github
cvelist
cvelist
CVE-2022-24814 Cross-site Scripting in Directus
2022-04-04 17:50:11
cve
cve
CVE-2022-24814
2022-04-04 18:15:08
osv
osv
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in directus
2022-04-05 18:30:15
CVE-2022-24814
2022-04-04 18:15:08