CVE-2024-26465 | stewdio beep.js URL /beep/Beep.Instrument.js cross site scripting

Inserito da Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability classified as problematic has been found in stewdio beep.js. This affects an unknown part of the file /beep/Beep.Instrument.js of the component URL Handler. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-26465. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-26465 | stewdio beep.js URL /beep/Beep.Instrument.js cross site scripting

Post correlati

CVE-2024-45032 | Siemens Industrial Edge Management Pro Device Token authorization (ssa-359713)

CVE-2024-23459 | Zscaler Client Connector up to 3.6 on macOS link following

CVE-2024-3774 | aEnrich a+HRD 6.8/7.0/7.1/7.2 System Configuration access control

CVE-2024-29924 | W3 Eden Premium Packages Plugin up to 5.8.2 on WordPress cross site scripting