cve/CVE-2024-38521.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 3428c6bdc6 Update CVE sources 2024-08-05 18:41

2024-08-05 18:41:32 +00:00

909 B

Raw Permalink Blame History

CVE-2024-38521

Description

Hush Line is a free and open-source, anonymous-tip-line-as-a-service for organizations or individuals. There is a stored XSS in the Inbox. The input is displayed using the safe Jinja2 attribute, and thus not sanitized upon display. This issue has been patched in version 0.1.0.

POC

Reference

https://github.com/scidsg/hushline/security/advisories/GHSA-4v8c-r6h2-fhh3

Github

No PoCs found on GitHub currently.

909 B Raw Permalink Blame History

CVE-2024-38521

Description

POC

Reference

Github

909 B

Raw Permalink Blame History