Количество 2
Количество 2
CVE-2026-24771
Hono is a Web application framework that provides support for any JavaScript runtime. Prior to version 4.11.7, a Cross-Site Scripting (XSS) vulnerability exists in the `ErrorBoundary` component of the hono/jsx library. Under certain usage patterns, untrusted user-controlled strings may be rendered as raw HTML, allowing arbitrary script execution in the victim's browser. Version 4.11.7 patches the issue.
GHSA-9r54-q6cx-xmh5
Hono vulnerable to XSS through ErrorBoundary component
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-24771 Hono is a Web application framework that provides support for any JavaScript runtime. Prior to version 4.11.7, a Cross-Site Scripting (XSS) vulnerability exists in the `ErrorBoundary` component of the hono/jsx library. Under certain usage patterns, untrusted user-controlled strings may be rendered as raw HTML, allowing arbitrary script execution in the victim's browser. Version 4.11.7 patches the issue. | CVSS3: 4.7 | 0% Низкий | 12 дней назад |
| GHSA-9r54-q6cx-xmh5 Hono vulnerable to XSS through ErrorBoundary component | CVSS3: 4.7 | 0% Низкий | 11 дней назад |
Уязвимостей на страницу