CVE-2024-26466 | web-platform-tests wpt URL Range-test-iframe.html cross site scripting

Posted by Angelo Barbosa | Feb 26, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in web-platform-tests wpt. This issue affects some unknown processing of the file /dom/ranges/Range-test-iframe.html of the component URL Handler. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-26466. The attack may be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-26466 | web-platform-tests wpt URL Range-test-iframe.html cross site scripting

Related Posts

CVE-2023-49557 | YASM 1.3.0.86.g9def libyasm/section.c yasm_section_bcs_first denial of service (Issue 253)

CVE-2023-47858 | Mattermost up to 8.1.6/9.0.4/9.1.3/9.2.2 Archived Public Channel deleted access control

CVE-2024-3478 | Herd Effects Plugin up to 5.2.6 on WordPress cross-site request forgery

CVE-2024-35397 | Totolink CP900L 4.1.5cu.798_B20221228 Request NTPSyncWithHost hostTime command injection