cve/2024/CVE-2024-47817.md

### [CVE-2024-47817](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47817)
![](https://img.shields.io/static/v1?label=Product&message=dynamic-dashboard&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20lara-zeus%2Fdynamic-dashboard%3A%20%3E%3D%203.0.0%2C%20%3C%203.0.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%3A%20Improper%20Neutralization%20of%20Input%20During%20Web%20Page%20Generation%20('Cross-site%20Scripting')&color=brighgreen)

### Description

Lara-zeus Dynamic Dashboard simple way to manage widgets for your website landing page, and filament dashboard and Lara-zeus artemis is a collection of themes for the lara-zeus ecosystem. If values passed to a paragraph widget are not valid and contain a specific set of characters, applications are vulnerable to XSS attack against a user who opens a page on which a paragraph widget is rendered. Users are advised to upgrade to the appropriate fix versions detailed in the advisory metadata. There are no known workarounds for this vulnerability.

### POC

#### Reference
- https://github.com/lara-zeus/dynamic-dashboard/security/advisories/GHSA-c6cw-g7fc-4gwc

#### Github
No PoCs found on GitHub currently.
Update CVE sources 2025-09-29 16:08 2025-09-29 16:08:36 +00:00			`### [CVE-2024-47817](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-47817)`
			`![](https://img.shields.io/static/v1?label=Product&message=dynamic-dashboard&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20lara-zeus%2Fdynamic-dashboard%3A%20%3E%3D%203.0.0%2C%20%3C%203.0.2%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-79%3A%20Improper%20Neutralization%20of%20Input%20During%20Web%20Page%20Generation%20('Cross-site%20Scripting')&color=brighgreen)`

			`### Description`

			Lara-zeus Dynamic Dashboard simple way to manage widgets for your website landing page, and filament dashboard and Lara-zeus artemis is a collection of themes for the lara-zeus ecosystem. If values passed to a paragraph widget are not valid and contain a specific set of characters, applications are vulnerable to XSS attack against a user who opens a page on which a paragraph widget is rendered. Users are advised to upgrade to the appropriate fix versions detailed in the advisory metadata. There are no known workarounds for this vulnerability.

			`### POC`

			`#### Reference`
			`- https://github.com/lara-zeus/dynamic-dashboard/security/advisories/GHSA-c6cw-g7fc-4gwc`

			`#### Github`
			`No PoCs found on GitHub currently.`