CVE-2024-34061 | dgtlmoon changedetection.io up to 0.45.21 notification_urls cross site scripting (GHSA-pwgc-w4x9-gw67)

Posted by Angelo Barbosa | May 2, 2024 | CVE

A vulnerability was found in dgtlmoon changedetection.io up to 0.45.21. It has been rated as problematic. This issue affects the function notification_urls. The manipulation leads to cross site scripting.

The identification of this vulnerability is CVE-2024-34061. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-34061 | dgtlmoon changedetection.io up to 0.45.21 notification_urls cross site scripting (GHSA-pwgc-w4x9-gw67)

Related Posts

CVE-2023-6985 | 10Web AI Assistant Plugin up to 1.0.18 on WordPress Plugin Installation authorization

CVE-2023-51700 | jamieblomerus WP-Mobile-BankID-Integration up to 1.0.0 on WordPress deserialization

CVE-2024-41805 | TracksApp tracks up to 2.7.0 cross site scripting (GHSA-fp4p-59hr-3695)

CVE-2024-34997 | joblib 1.4.2 NumpyArrayWrapper.read_array deserialization (Issue 1582)