Lucene search
MitreVULNRICHMENT:CVE-2024-34449HistoryMay 03, 2024 - 12:00 a.m.
CVE-2024-34449
2024-05-0300:00:00
mitre
github.com
4
vditor version 3.10.3
xss vulnerability
a element.
AI Score
5.8
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Vditor 3.10.3 allows XSS via an attribute of an A element. NOTE: the vendor indicates that a user is supposed to mitigate this via sanitize=true.
Related
nvd
nvd
CVE-2024-34449
2024-05-03 16:15:11
veracode
veracode
Cross Site Scripting (XSS)
2024-05-06 06:56:44
osv
osv
Vditor allows Cross-site Scripting via an attribute of an `A` element
2024-05-03 18:30:37
cve
cve
CVE-2024-34449
2024-05-03 16:15:11
cvelist
cvelist
CVE-2024-34449
2024-05-03 00:00:00
github
github
Vditor allows Cross-site Scripting via an attribute of an `A` element
2024-05-03 18:30:37
AI Score
5.8
Confidence
High
EPSS
0
Percentile
9.0%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-34449