CVE-2024-22854
- Reference to the description:
- Description:
- DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 (bundle version 61050) and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an injected HTML form.
- Last updated date:
- 01/13/2025
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 01/13/2025
- Reference url to background