Skip to main content

Passbolt Api

1 CVEs product

Monthly

CVE-2024-33670 PHP MEDIUM PATCH This Month

Passbolt API before 4.6.2 allows HTML injection in a URL parameter, resulting in custom content being displayed when a user visits the crafted URL. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Passbolt Api
NVD
CVSS 3.1
4.3
EPSS
0.5%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Passbolt API before 4.6.2 allows HTML injection in a URL parameter, resulting in custom content being displayed when a user visits the crafted URL. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Passbolt Api
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy