cve/2024/CVE-2024-29384.md

CVE-2024-29384

Description

An issue in CSS Exfil Protection v.1.1.0 allows a remote attacker to obtain sensitive information via the content.js and parseCSSRules functions.

POC

Reference

• https://github.com/mlgualtieri/CSS-Exfil-Protection/issues/41
• https://github.com/mlgualtieri/CSS-Exfil-Protection/issues/41
• https://github.com/randshell/vulnerability-research/tree/main/CVE-2024-29384
• https://github.com/randshell/vulnerability-research/tree/main/CVE-2024-29384

Github

• https://github.com/nomi-sec/PoC-in-GitHub
• https://github.com/randshell/CSS-Exfil-Protection-POC
• https://github.com/randshell/CVE-2024-29384