Medium severity6.1NVD Advisory· Published Oct 25, 2024· Updated Jun 17, 2026
CVE-2024-48396
CVE-2024-48396
Description
AIML Chatbot 1.0 (fixed in 2.0) is vulnerable to Cross Site Scripting (XSS). The vulnerability is exploited through the message input field, where attackers can inject malicious HTML or JavaScript code. The chatbot fails to sanitize these inputs, leading to the execution of malicious scripts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <2.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.