Lucene search
Redhat.comRH:CVE-2024-26143HistoryFeb 27, 2024 - 6:32 p.m.
CVE-2024-26143
2024-02-2718:32:28
redhat.com
access.redhat.com
13
cve-2024-26143
vulnerability
actionpack ruby gem
translate method
cross-site scripting
xss attack
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0
Percentile
10.3%
A vulnerability was found in actionpack ruby gem. Applications using the translate method may be susceptible to a cross-site scripting (XSS) attack.
Related
osv
osv
Rails has possible XSS Vulnerability in Action Controller
2024-02-27 21:41:12
CVE-2024-26143
2024-02-27 16:15:46
ruby3.3-rubygem-rails-7.0-7.0.8.4-1.1 on GA media
2024-06-24 00:00:00
vulnrichment
vulnrichment
CVE-2024-26143 Rails Possible XSS Vulnerability in Action Controller
2024-02-27 15:33:54
ubuntucve
ubuntucve
CVE-2024-26143
2024-02-27 00:00:00
prion
prion
Design/Logic Flaw
2024-02-27 16:15:00
rubygems
rubygems
Possible XSS Vulnerability in Action Controller
2024-02-20 21:00:00
cvelist
cvelist
CVE-2024-26143 Rails Possible XSS Vulnerability in Action Controller
2024-02-27 15:33:54
veracode
veracode
Cross-Site Scripting (XSS)
2024-02-28 07:01:44
github
github
Rails has possible XSS Vulnerability in Action Controller
2024-02-27 21:41:12
nvd
nvd
CVE-2024-26143
2024-02-27 16:15:46
cve
cve
CVE-2024-26143
2024-02-27 16:15:46
debiancve
debiancve
CVE-2024-26143
2024-02-27 16:15:46
redos
redos
ROS-20240827-06
2024-08-27 00:00:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0
Percentile
10.3%
Related for RH:CVE-2024-26143