CVE-2024-36043 | SurveyJS Form Library up to 1.10.3 question_image.ts imageLink cross site scripting (ID 8286)

Posted by Angelo Barbosa | May 19, 2024 | CVE

A vulnerability has been found in SurveyJS Form Library up to 1.10.3 and classified as problematic. This vulnerability affects unknown code of the file question_image.ts. The manipulation of the argument imageLink leads to cross site scripting.

This vulnerability was named CVE-2024-36043. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-36043 | SurveyJS Form Library up to 1.10.3 question_image.ts imageLink cross site scripting (ID 8286)

Related Posts

CVE-2023-52547 | Huawei CurieM-WFG9B 2.29 SMM Module length parameter

CVE-2024-8367 | HM Courts & Tribunals Service Probate Back Office up to c1afe0cdb2b2766d9e24872c4e827f8b82a6cd31 Markdown NotificationService.java injection (DTSPB-4180/2614)

CVE-2023-51702 | Apache Airflow up to 2.6.0 CNCF Kubernetes Provider log file

CVE-2024-38812 | VMware vCenter Server/Cloud Foundation DCERPC Protocol heap-based overflow