logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2024-45856

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2024-45856

Description:
A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScript code within the web UI.
Last updated date:
09/16/2024
Type:
exploit
Confidence:
HIGH
Date of publishing:
09/16/2024
Reference url to background

https://hiddenlayer.com/sai-security-advisory/2024-09-mindsdb/

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2024

Privacy Policy