data/reports/GO-2024-3125.yaml - vulndb - Git at Google

 id: GO-2024-3125
 modules:
     - module: github.com/gouniverse/cms
       versions:
         - fixed: 1.4.1
       vulnerable_at: 1.4.0
 summary: Gouniverse GoLang CMS vulnerable to Cross-site Scripting in github.com/gouniverse/cms
 cves:
     - CVE-2024-8572
 ghsas:
     - GHSA-pv7h-hg6m-82j8
 references:
     - advisory: https://github.com/advisories/GHSA-pv7h-hg6m-82j8
     - advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-8572
     - fix: https://github.com/gouniverse/cms/commit/3e661cdfb4beeb9fe2ad507cdb8104c0b17d072c
     - report: https://github.com/gouniverse/cms/issues/5
     - report: https://github.com/gouniverse/cms/issues/5#issuecomment-2330848731
     - web: https://github.com/gouniverse/cms/releases/tag/v1.4.1
     - web: https://vuldb.com/?ctiid.276802
     - web: https://vuldb.com/?id.276802
     - web: https://vuldb.com/?submit.401896
 source:
     id: GHSA-pv7h-hg6m-82j8
     created: 2024-09-13T15:11:48.913685-04:00
 review_status: UNREVIEWED
	id: GO-2024-3125
	modules:
	- module: github.com/gouniverse/cms
	versions:
	- fixed: 1.4.1
	vulnerable_at: 1.4.0
	summary: Gouniverse GoLang CMS vulnerable to Cross-site Scripting in github.com/gouniverse/cms
	cves:
	- CVE-2024-8572
	ghsas:
	- GHSA-pv7h-hg6m-82j8
	references:
	- advisory: https://github.com/advisories/GHSA-pv7h-hg6m-82j8
	- advisory: https://nvd.nist.gov/vuln/detail/CVE-2024-8572
	- fix: https://github.com/gouniverse/cms/commit/3e661cdfb4beeb9fe2ad507cdb8104c0b17d072c
	- report: https://github.com/gouniverse/cms/issues/5
	- report: https://github.com/gouniverse/cms/issues/5#issuecomment-2330848731
	- web: https://github.com/gouniverse/cms/releases/tag/v1.4.1
	- web: https://vuldb.com/?ctiid.276802
	- web: https://vuldb.com/?id.276802
	- web: https://vuldb.com/?submit.401896
	source:
	id: GHSA-pv7h-hg6m-82j8
	created: 2024-09-13T15:11:48.913685-04:00
	review_status: UNREVIEWED