CVE-2024-45856 - MindsDB XSS

2 months ago 29
ARTICLE AD BOX
CVE ID : CVE-2024-45856
Published : Sept. 12, 2024, 1:15 p.m. | 24 minutes ago
Description : A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScript code within the web UI.
Severity: 9.0 | CRITICAL
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article