Medium severity6.1NVD Advisory· Published Mar 13, 2025· Updated Jun 17, 2026
CVE-2024-57348
CVE-2024-57348
Description
Cross Site Scripting vulnerability in PecanProject pecan through v.1.8.0 allows a remote attacker to execute arbitrary code via the crafted payload to the hostname, sitegroupid, lat, lon and sitename parameters.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=1.8.0
- osv-coords16 versionspkg:apk/chainguard/py3.11-pecanpkg:apk/chainguard/py3.11-pecan-binpkg:apk/chainguard/py3.12-pecanpkg:apk/chainguard/py3.12-pecan-binpkg:apk/chainguard/py3.13-pecanpkg:apk/chainguard/py3.13-pecan-binpkg:apk/chainguard/py3-pecanpkg:apk/chainguard/py3-supported-pecanpkg:apk/wolfi/py3.11-pecanpkg:apk/wolfi/py3.11-pecan-binpkg:apk/wolfi/py3.12-pecanpkg:apk/wolfi/py3.12-pecan-binpkg:apk/wolfi/py3.13-pecanpkg:apk/wolfi/py3.13-pecan-binpkg:apk/wolfi/py3-pecanpkg:apk/wolfi/py3-supported-pecan
< 0+ 15 more
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
- (no CPE)range: < 0
Patches
Vulnerability mechanics
References
1- github.com/PecanProject/pecan/issues/3400nvdExploitIssue Tracking
News mentions
0No linked articles in our index yet.