Security Advisory

CVE-2024-26318

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-19 00:00:00
Last updated 2025-03-25 18:43:15
Assigner mitre
State PUBLISHED

Description

Serenity before 6.8.0 allows XSS via an email link because LoginPage.tsx permits return URLs that do not begin with a / character.

← Browse all CVEs View on cve.org ↗