CVE-2024-41810 | Twisted up to 24.3.0 Twisted.web.util.redirectTo cross site scripting (GHSA-cf56-g6w6-pqq2)

Inserito da Angelo Barbosa | Lug 29, 2024 | CVE

A vulnerability, which was classified as problematic, was found in Twisted up to 24.3.0. Affected is an unknown function of the component Twisted.web.util.redirectTo. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-41810. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41810 | Twisted up to 24.3.0 Twisted.web.util.redirectTo cross site scripting (GHSA-cf56-g6w6-pqq2)

Post correlati

CVE-2024-0021 | Google Android 13/14 NotificationAccessConfirmationActivity.java onCreate Local Privilege Escalation

CVE-2023-46219 | cURL up to 8.4.0 HSTS File Name lib/fopen.c missing encryption

CVE-2024-6480 | SIP Reviews Shortcode for WooCommerce Plugin up to 1.2.3 on WordPress cross site scripting

CVE-2024-46748 | Linux Kernel up to 6.10.9 MAX_RW_COUNT Privilege Escalation (cec226f9b1fd/51d37982bbac)