CVE-2024-21485P4MEDIUMCVSS 5.4PoCfixed in 2.13.0·≥ 2.14.0, < 2.15.0+1 more2024-02-02
CVE-2024-21485 [MEDIUM] CWE-79 CVE-2024-21485: Versions of the package dash-core-components before 2.13.0; versions of the package dash-core-compon
Versions of the package dash-core-components before 2.13.0; versions of the package dash-core-components before 2.0.0; versions of the package dash before 2.15.0; versions of the package dash-html-components before 2.0.0; versions of the package dash-html-components before 2.0.16 are vulnerable to Cross-site Scripting (XSS) when the href of the a tag
ghsanvdosv