CVE-2024-54160

Publication date

2025-02-12 00:00:00

Family

mitre

State

PUBLISHED

Description

dashboards-reporting (aka Dashboards Reports) before 2.19.0.0, as shipped in OpenSearch before 2.19, allows XSS because Markdown is not sanitized when previewing a header or footer.