Medium severity5.9NVD Advisory· Published Jun 4, 2024· Updated Jun 17, 2026
CVE-2024-35655
CVE-2024-35655
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Brave Brave brave-popup-builder allows DOM-Based XSS.This issue affects Brave: from n/a through <= 0.6.9.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Range: <=0.6.9
- osv-coords2 versions
< 0.7.0+ 1 more
- (no CPE)range: < 0.7.0
- (no CPE)range: < 0.7.0
Patches
Vulnerability mechanics
References
2- patchstack.com/database/vulnerability/brave-popup-builder/wordpress-brave-interactive-content-plugin-0-6-8-cross-site-scripting-xss-vulnerabilitynvdThird Party Advisory
- patchstack.com/database/Wordpress/Plugin/brave-popup-builder/vulnerability/wordpress-brave-interactive-content-plugin-0-6-8-cross-site-scripting-xss-vulnerabilitynvd
News mentions
0No linked articles in our index yet.