Lucene search
GoogleOSV:GO-2024-2721HistoryMay 09, 2024 - 10:01 p.m.
Cross site scripting in github.com/tiagorlampert/CHAOS
2024-05-0922:01:10
Google
osv.dev
6
cross site scripting
github
jwt token
malicious request
software
A malicious actor may be able to extract a JWT token via malicious “/command” request. This is a form of cross site scripting (XSS).
Related
nvd
nvd
CVE-2024-31839
2024-04-12 14:15:07
cve
cve
CVE-2024-31839
2024-04-12 14:15:07
osv
osv
tiagorlampert CHAOS vulnerable to Cross Site Scripting
2024-04-12 15:37:21
cvelist
cvelist
CVE-2024-31839
2024-04-12 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2024-04-15 06:31:09
github
github
tiagorlampert CHAOS vulnerable to Cross Site Scripting
2024-04-12 15:37:21
zdt
zdt
CHAOS 5.0.8 Cross Site Scripting / Remote Command Execution Exploit
2024-05-22 00:00:00
CHAOS RAT 5.0.1 Remote Command Execution Exploit
2024-04-11 00:00:00
packetstorm
packetstorm
CHAOS 5.0.8 Cross Site Scripting / Remote Command Execution
2024-05-21 00:00:00
CHAOS RAT 5.0.1 Remote Command Execution
2024-04-10 00:00:00