High severity7.4NVD Advisory· Published Jul 22, 2024· Updated Jun 17, 2026
CVE-2024-32484
CVE-2024-32484
Description
An reflected XSS vulnerability exists in the handling of invalid paths in the Flask server in Ankitects Anki 24.04. A specially crafted flashcard can lead to JavaScript code execution and result in an arbitrary file read. An attacker can share a malicious flashcard to trigger this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
2- talosintelligence.com/vulnerability_reports/TALOS-2024-1995nvdExploitThird Party Advisory
- www.talosintelligence.com/vulnerability_reports/TALOS-2024-1995nvd
News mentions
0No linked articles in our index yet.