CVE-2024-6892
MEDIUMDescription
Attackers can craft a malicious link that once clicked will execute arbitrary JavaScript in the context of the Journyx web application.
Is your site exposed to CVE-2024-6892?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| journyx | journyx |
References
Frequently Asked Questions
What is CVE-2024-6892? +
How severe is CVE-2024-6892? +
What products are affected by CVE-2024-6892? +
How do I check if I'm vulnerable to CVE-2024-6892? +
Related Vulnerabilities
Improper Neutralization of Script in an Error Message Web Page vulnerability in OpenText™ Service Manager. The vulnerability could reveal sensitive …
A vulnerability in the error notification messages of the web application of ctrlX OS allows a remote unauthenticated attacker to …
Computer Vision Annotation Tool (CVAT) is an interactive video and image annotation tool for computer vision. If an attacker can …
Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, …
OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the built-in "Something went …
Password reset tokens are generated using an insecure source of randomness. Attackers who know the username of the Journyx installation …