Lucene search
VulnCheckVULNRICHMENT:CVE-2024-22048HistoryJan 04, 2024 - 8:39 p.m.
CVE-2024-22048 govuk_tech_docs XSS Vulnerability
2024-01-0420:39:59
CWE-79
VulnCheck
github.com
1
cross-site scripting
vulnerability
malicious javascript
search page
govuk_tech_docs versions from 2.0.2 to before 3.3.1 are vulnerable to a cross-site scripting vulnerability. Malicious JavaScript may be executed in the user’s browser if a malicious search result is displayed on the search page.
Related
osv
osv
govuk_tech_docs vulnerable to unescaped HTML on search results page
2023-04-11 15:41:30
CVE-2024-22048
2024-01-04 21:15:09
cve
cve
CVE-2024-22048
2024-01-04 21:15:09
veracode
veracode
Cross Site Scripting (XSS)
2024-01-05 09:57:26
nvd
nvd
CVE-2024-22048
2024-01-04 21:15:09
rubygems
rubygems
govuk_tech_docs vulnerable to unescaped HTML on search results page
2023-04-10 21:00:00
prion
prion
Cross site scripting
2024-01-04 21:15:00
github
github
govuk_tech_docs vulnerable to unescaped HTML on search results page
2023-04-11 15:41:30
cvelist
cvelist
CVE-2024-22048 govuk_tech_docs XSS Vulnerability
2024-01-04 20:39:59
AI Score
6
Confidence
High
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-22048