mirror of
https://github.com/0x5t4l1n/CVE.git
synced 2026-05-26 19:26:32 +00:00
Create CVE-2026-41575.md
This commit is contained in:
Stalin
@@ -0,0 +1,28 @@
|
|||||||
|
|
||||||
|
|
||||||
|
# CVE-2026-41575 — DOM-Based XSS (IP Reputation Checker)
|
||||||
|
|
||||||
|
**Severity:** Moderate
|
||||||
|
**CWE:** CWE-80, CWE-85
|
||||||
|
|
||||||
|
## Summary
|
||||||
|
A DOM-based XSS vulnerability allows execution of arbitrary JavaScript due to unsanitized user input.
|
||||||
|
|
||||||
|
## Impact
|
||||||
|
- Session hijacking
|
||||||
|
- Credential theft
|
||||||
|
- Client-side compromise
|
||||||
|
|
||||||
|
## Affected
|
||||||
|
1.0.1
|
||||||
|
|
||||||
|
## Fixed
|
||||||
|
2.0.1
|
||||||
|
|
||||||
|
## References
|
||||||
|
- https://github.com/advisories/GHSA-j7wv-7j97-9qh9
|
||||||
|
|
||||||
|
## Credits
|
||||||
|
Reporter: krraze
|
||||||
|
Coordinator: Stalin-143
|
||||||
|
Coordinator: harriiinnii
|
||||||
Reference in New Issue
Block a user