CVE-2024-37031 | Active Admin up to 3.2.1/4.0.0.beta6 on Ruby on Rails cross site scripting (GHSA-9mg6-x45v-hcfm)

Inserito da Angelo Barbosa | Giu 3, 2024 | CVE

A vulnerability was found in Active Admin up to 3.2.1/4.0.0.beta6 on Ruby on Rails. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-37031. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37031 | Active Admin up to 3.2.1/4.0.0.beta6 on Ruby on Rails cross site scripting (GHSA-9mg6-x45v-hcfm)

Post correlati

CVE-2024-31380 | Soflyy Oxygen Builder Plugin up to 4.8.1 on WordPress code injection

CVE-2024-33531 | cdbattags lua-resty-jwt 0.2.3 Enc Header improper authentication

CVE-2023-37294 | AMI MegaRAC_SPx prior 12.7/13.6 BMC heap-based overflow

CVE-2024-34094 | Adobe Acrobat Reader up to 20.005.30574/24.002.20736 use after free (apsb24-29)