CVE-2024-33905 | Telegram WebK up to 1.x web_app_open_link cross site scripting

Posted by Angelo Barbosa | Apr 29, 2024 | CVE

A vulnerability classified as problematic was found in Telegram WebK up to 1.x. This vulnerability affects the function web_app_open_link. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-33905. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-33905 | Telegram WebK up to 1.x web_app_open_link cross site scripting

Related Posts

CVE-2024-30879 | RageFrame2 2.6.43 boxId cross site scripting (Issue 114)

CVE-2024-2006 | wpwax Post Grid, Slider & Carousel Ultimate Plugin up to 1.6.7 on WordPress outpost_shortcode_metabox_markup deserialization

CVE-2024-1591 | BeyondTrust Privilege Management up to 24.0 on Windows Sysvol information disclosure

CVE-2024-0849 | Leanote 2.7.0 file inclusion