2024-02-19 05:00:27 +00:00
{
"id" : "CVE-2024-26318" ,
"sourceIdentifier" : "cve@mitre.org" ,
"published" : "2024-02-19T04:15:07.400" ,
2024-02-20 21:00:35 +00:00
"lastModified" : "2024-02-20T19:50:53.960" ,
"vulnStatus" : "Awaiting Analysis" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2024-02-19 05:00:27 +00:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Serenity before 6.8.0 allows XSS via an email link because LoginPage.tsx permits return URLs that do not begin with a / character."
2024-02-20 21:00:35 +00:00
} ,
{
"lang" : "es" ,
"value" : "Serenity antes de 6.8.0 permite XSS a trav\u00e9s de un enlace de correo electr\u00f3nico porque LoginPage.tsx permite URL de retorno que no comienzan con el car\u00e1cter /."
2024-02-19 05:00:27 +00:00
}
] ,
"metrics" : { } ,
"references" : [
{
"url" : "https://serenity.is/docs/release-notes/6.8.0" ,
"source" : "cve@mitre.org"
}
]
}
