Medium severity6.1GHSA Advisory· Published Aug 26, 2024· Updated Apr 15, 2026
CVE-2024-42818
CVE-2024-42818
Description
A cross-site scripting (XSS) vulnerability in the Config-Create function of fastapi-admin pro v0.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
fastapi-adminPyPI | <= 0.1.4 | — |
Affected products
2- Range: <= 0.1.4
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.