Security Advisory

CVE-2023-24539

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-11 15:29:38

Last updated 2025-01-24 16:41:28

Assigner Go

State PUBLISHED

Description

Angle brackets (<>) are not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a / character can result in unexpectedly closing the CSS context and allowing for injection of unexpected HTML, if executed with untrusted input.

← Browse all CVEs View on cve.org ↗