CVE-2024-29882
published 2024-03-28CVE-2024-29882: SRS is a simple, high-efficiency, real-time video server. SRS's `/api/v1/vhosts/vid-?callback=` endpoint didn't filter the callback function name which led to…
PriorityP336medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
1.09%
61.1th percentile
SRS is a simple, high-efficiency, real-time video server. SRS's `/api/v1/vhosts/vid-?callback=` endpoint didn't filter the callback function name which led to injecting malicious javascript payloads and executing XSS ( Cross-Site Scripting). This vulnerability is fixed in 5.0.210 and 6.0.121.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ossrs | simple_realtime_server | < 5.0.210 | 5.0.210 |
| ossrs | simple_realtime_server | >= 6.0.0 < 6.0.121 | 6.0.121 |
| ossrs | srs | < 5.0.210 | 5.0.210 |
| ossrs | srs | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No advisories linked to this vulnerability.
No detection rules found.
Nuclei
HTTP API DOM - XSS on JSONP callback
nuclei·CVSS 6.1
CVE-2024-29882 [MEDIUM] HTTP API DOM - XSS on JSONP callback
HTTP API DOM - XSS on JSONP callback
SRS is a simple, high-efficiency, real-time video server. SRS's `/api/v1/vhosts/vid-?callback=` endpoint didn't filter the callback function name which led to injecting malicious javascript payloads and executing XSS ( Cross-Site Scripting). This vulnerability is fixed in 5.0.210 and 6.0.121.
Template:
id: CVE-2024-29882
info:
name: HTTP API DOM - XSS on JSONP callback
author: rootxharsh,iamnoooob,pdresearch
severity: high
description: |
SRS is a simple, high-efficiency, real-time video server. SRS's `/api/v1/vhosts/vid-?callback=` endpoint didn't filter the callback function name which led to injecting malicious javascript payloads and executing XSS ( Cross-Site Scripting). This vulnerability is fixed in 5.0.210 and 6.0.121.
remediation: |
Upgrade
No writeups or analysis indexed.
2024-03-28
Published