Security Advisory

CVE-2024-48059

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-04 00:00:00

Last updated 2024-11-05 21:24:41

Assigner mitre

State PUBLISHED

Description

gaizhenbiao/chuanhuchatgpt project, version <=20240802 is vulnerable to stored Cross-Site Scripting (XSS) in WebSocket session transmission. An attacker can inject malicious content into a WebSocket message. When a victim accesses this session, the malicious JavaScript is executed in the victims browser.

← Browse all CVEs View on cve.org ↗