exploitDog

CVE-2024-26465

Опубликовано: 26 фев. 2024

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

Ссылки

EPSS

Процентиль: 43%

0.0021

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-xx6x-c9h6-h6fv

CVSS3: 6.1

github

почти 2 года назад

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

EPSS

Процентиль: 43%

0.0021

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79