Vulnerabilities

CVE-2024-22854

by Fred · 16/02/2024

DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 (bundle version 61050) and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an injected HTML form.

More information : https://tomekwasiak.pl/cve-2024-22854/

Similar

Tags: Cybersecurity Alert