CVE-2024-13262

Name of the Vulnerable Software and Affected Versions View Password versions 0.0.0 through 6.0.4

Description The issue is related to improper neutralization of input during web page generation, which allows for Cross-Site Scripting (XSS) attacks. This can enable a remote attacker to perform XSS attacks.

Recommendations For versions 0.0.0 through 6.0.4, update to a version later than 6.0.4 to resolve the issue. As a temporary workaround, consider restricting access to the View Password module until a patch is available.