Artifactory Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2024-2247 - Vulnerability Database

Artifactory

Artifactory Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2024-2247

Medium

Reference: CVE-2024-2247

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-2247

Title: Artifactory Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability

Overview:

JFrog Artifactory versions below 7.77.7 7.82.1 are vulnerable to DOM-based cross-site scripting due to improper handling of the import override mechanism.