CVE-2024-45592 | DamienHarper auditor-bundle up to 5.x Twig Macro source_label cross site scripting (GHSA-78vg-7v27-hj67)

Posted by Angelo Barbosa | Sep 10, 2024 | CVE

A vulnerability was found in DamienHarper auditor-bundle up to 5.x and classified as problematic. This issue affects some unknown processing of the component Twig Macro Handler. The manipulation of the argument source_label leads to cross site scripting.

The identification of this vulnerability is CVE-2024-45592. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-45592 | DamienHarper auditor-bundle up to 5.x Twig Macro source_label cross site scripting (GHSA-78vg-7v27-hj67)

Related Posts

CVE-2024-3888 | tagDiv Composer Plugin up to 4.8 on WordPress Shortcode cross site scripting

CVE-2024-3799 | Phoniebox up to 2.7 Header Parameter os command injection

CVE-2024-37054 | MLflow 0.9.0 deserialization

CVE-2024-43833 | Linux Kernel up to 6.1.102/6.6.43/6.10.2 async v4l2_async_create_ancillary_links null pointer dereference