CVE-2024-41809 | OpenObserve up to 0.10.0 MemberSubscription.vue cross site scripting (GHSA-rw8w-37p9-mrrp)

Inserito da Angelo Barbosa | Lug 25, 2024 | CVE

A vulnerability, which was classified as problematic, was found in OpenObserve up to 0.10.0. Affected is an unknown function of the file openobserve/web/src/views/MemberSubscription.vue. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-41809. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41809 | OpenObserve up to 0.10.0 MemberSubscription.vue cross site scripting (GHSA-rw8w-37p9-mrrp)

Post correlati

CVE-2023-45000 | LiteSpeed Technologies LiteSpeed Cache Plugin up to 5.7 on WordPress authorization

CVE-2024-23752 | PandasAI up to 1.5.17 Python Code synthetic_dataframe code injection (Issue 868)

CVE-2024-42546 | TOTOLINK A3100R 4.1.2cu.5050_B20200504 loginauth password buffer overflow

CVE-2024-5441 | Modern Events Calendar Plugin up to 7.11.0 on WordPress unrestricted upload