제출 #588224: comfyui 0.3.39 Cross Site Scripting정보

제목comfyui 0.3.39 Cross Site Scripting
설명ComfyUI is vulnerable to Cross Site Scripting vulnerability. Attackers can exploit the vulnerability by uploading .svg, .xhtml, etc., files containing the trigerable javascript payloads, which bypasses the patch for CVE-2024-10099.
원천⚠️ https://gist.github.com/superboy-zjc/96f0d56da584d840ba18355cbea96ac4
사용자
 Gavin Zhong (UID 84092)
제출2025. 06. 01. AM 12:22 (1 년도 ago)
모더레이션2025. 06. 15. AM 01:09 (14 days later)
상태수락
VulDB 항목312559 [comfyanonymous comfyui 까지 0.3.39 Incomplete Fix CVE-2024-10099 /upload/image 크로스 사이트 스크립팅]
포인트들16

이전개요다음

Might our Artificial Intelligence support you?

Check our Alexa App!