CVE-2024-5933
A Cross-site Scripting (XSS) vulnerability exists in the chat functionality of parisneo/lollms-webui in the latest versi
A Cross-site Scripting (XSS) vulnerability exists in the chat functionality of parisneo/lollms-webui in the latest version. This vulnerability allows an attacker to inject malicious scripts via chat messages, which are then executed in the context of the user's browser.
MEDIUM · CVSS 5.4
EPSS 0.00131
Schedule remediation
- Public exploit or PoC is available
Sigma rules0
YARA rules0