CVE-2024-33748: MS Basic Cross-site Scripting vulnerability

May 7, 2024

Cross-site scripting (XSS) vulnerability in the search function in MvnRepository MS Basic 2.1.18.3 and earlier.

References

github.com/Fr1ezy/Fr1ezy-ms-basic_XSS
github.com/advisories/GHSA-64cm-3cj3-67hf
mvnrepository.com/artifact/net.mingsoft/ms-basic
nvd.nist.gov/vuln/detail/CVE-2024-33748

Detect and mitigate CVE-2024-33748 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →