CVE-2025-4779 | lunary-ai lunary up to 1.9.23 dangerouslySetInnerHTML citations cross site scripting

Inserito da Angelo Barbosa | Lug 7, 2025 | CVE

A vulnerability classified as problematic was found in lunary-ai lunary up to 1.9.23. This vulnerability affects the function dangerouslySetInnerHTML. The manipulation of the argument citations leads to cross site scripting.

This vulnerability was named CVE-2025-4779. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-4779 | lunary-ai lunary up to 1.9.23 dangerouslySetInnerHTML citations cross site scripting

Post correlati

CVE-2024-3312 | Easy Custom Auto Excerpt Plugin up to 2.4.12 on WordPress information disclosure

CVE-2023-49242 | Huawei HarmonyOS/EMUI Broadcast access control

CVE-2024-13270 | Drupal Freelinking up to 3.x authorization

CVE-2024-2378 | Hitachi Energy SDM600 prior 1.3.4.572 Web-Authentication authorization