Dcat-Admin v2.2.0-beta and v2.2.2-beta contains a Cross-Site Scripting (XSS) vulnerability via /admin/auth/menu and /admin/auth/extensions.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/54xxx/CVE-2024-54775.json",
"cna_assigner": "mitre"
}{
"cpe": [
"cpe:2.3:a:dcatadmin:dcat_admin:2.2.0:beta:*:*:*:*:*:*",
"cpe:2.3:a:dcatadmin:dcat_admin:2.2.2:beta:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "2.2.0-beta"
},
{
"last_affected": "2.2.0-beta"
},
{
"introduced": "2.2.2-beta"
},
{
"last_affected": "2.2.2-beta"
}
],
"source": "CPE_STRING"
}