CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Web-Platform-Tests: Security Vulnerabilities

CVE-2024-26466

A DOM based cross-site scripting (XSS) vulnerability in the component /dom/ranges/Range-test-iframe.html of web-platform-tests/wpt before commit 938e843 allows attackers to execute arbitrary Javascript via sending a crafted URL.

CVSS Score

6.1

EPSS Score

0.002

Published

2024-02-26

Page 1

Vulnerabilities

Vulnerable Software

Web-Platform-Tests: Security Vulnerabilities

Products

Pricing

Contact Us