Moderate severityNVD Advisory· Published Jul 17, 2024· Updated Oct 27, 2024
CVE-2024-39124
CVE-2024-39124
Description
In Roundup before 2.4.0, classhelpers (_generic.help.html) allow XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
roundupPyPI | < 2.4.0 | 2.4.0 |
Affected products
2Patches
Vulnerability mechanics
References
7- github.com/advisories/GHSA-w8vc-cwv9-wx67ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-39124ghsaADVISORY
- github.com/pypa/advisory-database/tree/main/vulns/roundup/PYSEC-2024-63.yamlghsaWEB
- github.com/roundup-tracker/roundup/commit/860e3c8d07b05b77c6cdf5d0b6e7dbfe51b11631ghsaWEB
- www.roundup-tracker.orgghsaWEB
- www.roundup-tracker.org/docs/security.htmlghsaWEB
- www.roundup-tracker.orgmitre
News mentions
0No linked articles in our index yet.