CVE-2024-22776

Published February 23rd, 2024

View on NVD ↗

CVSS v3

4.7

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

Wallos 0.9 is vulnerable to Cross Site Scripting (XSS) in all text-based input fields without proper validation, excluding those requiring specific formats like date fields.

ellite/Wallos

Wallos: Open-source, self-hostable personal subscription tracker. Visualize your recurring expenses, manage your budget, and save money.

GitHub

8.02K