CVE-2024-41673

Published October 1st, 2024

View on NVD ↗

CVSS v3

7.1

HIGH

CVSS v2

N/A

Affected

PROJECT

Description

Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential XSS attack through a malformed URL. This vulnerability is fixed in 0.27.8.

decidim/decidim

The participatory democracy framework. A generator and multiple gems made with Ruby on Rails

GitHub

1.77K