CVE-2024-43796 | Express.js up to 4.19.x response.redirect cross site scripting

Inserito da Angelo Barbosa | Set 10, 2024 | CVE

A vulnerability was found in Express.js up to 4.19.x. It has been declared as problematic. This vulnerability affects the function response.redirect. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-43796. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-43796 | Express.js up to 4.19.x response.redirect cross site scripting

Post correlati

CVE-2023-52753 | Linux Kernel up to 6.6.2 AMD Display null pointer dereference

CVE-2024-23290 | Apple macOS access control

CVE-2024-41959 | mailcow-dockerized prior 2024-07 API Log cross site scripting (GHSA-v3r3-8f69-ph29)

CVE-2024-29275 | SeaCMS 12.9 class.php id sql injection (Issue 15)