Unrated severityNVD Advisory· Published Feb 20, 2024· Updated Oct 28, 2024
[20240204] - Core - XSS in mail address outputs
CVE-2024-21725
Description
Inadequate escaping of mail addresses lead to XSS vulnerabilities in various components.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
1- Splitting the email atom: exploiting parsers to bypass access controlsPortSwigger Research · Aug 7, 2024