Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Camunda Services GmbH bpmn.Io allows Stored XSS.This issue affects bpmn.Io: from n/a through 1.0.
Metrics
Affected Vendors & Products
References
History
Thu, 14 Nov 2024 02:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Camunda
Camunda bpmn.io |
|
CPEs | cpe:2.3:a:camunda:bpmn.io:1.0:*:*:*:*:wordpress:*:* | |
Vendors & Products |
Camunda
Camunda bpmn.io |
Sun, 10 Nov 2024 12:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Sun, 10 Nov 2024 09:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Camunda Services GmbH bpmn.Io allows Stored XSS.This issue affects bpmn.Io: from n/a through 1.0. | |
Title | WordPress bpmn.io plugin <= 1.0 - Stored Cross Site Scripting (XSS) vulnerability | |
Weaknesses | CWE-79 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published: 2024-11-10T09:11:40.860Z
Updated: 2024-11-10T12:04:52.347Z
Reserved: 2024-10-30T15:03:49.638Z
Link: CVE-2024-51577
Vulnrichment
Updated: 2024-11-10T12:04:38.112Z
NVD
Status : Analyzed
Published: 2024-11-10T10:15:04.877
Modified: 2024-11-14T02:24:17.973
Link: CVE-2024-51577
Redhat
No data.