CVE-2024-5478 | lunary-ai lunary up to 1.2.7 cross site scripting

Posted by Angelo Barbosa | Jun 6, 2024 | CVE

A vulnerability, which was classified as problematic, was found in lunary-ai lunary up to 1.2.7. This affects an unknown part of the file /auth/saml/${org?.id}/metadata. The manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2024-5478. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-5478 | lunary-ai lunary up to 1.2.7 cross site scripting

Related Posts

CVE-2024-52473 | Sandeep Verma HTML5 Lyrics Karaoke Player Plugin up to 2.4 on WordPress cross site scripting

CVE-2024-37680 | Hangzhou Meisoft Information Technology FineSoft up to 8.0 controllable cross site scripting

CVE-2024-21771 | F5 BIG-IP AFM up to 15.1.8/16.1.3/17.1.0 IPS Engine allocation of resources (K000137595)

CVE-2024-6757 | Elementor Plugin up to 3.23.5 on WordPress get_image_alt information disclosure