HelloAsso vulnerable to XSS (Stored XSS)
CVE-2024-37488
5.4MEDIUM
What is CVE-2024-37488?
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in HelloAsso HelloAsso helloasso.This issue affects HelloAsso: from n/a through <= 1.1.9.
Affected Version(s)
HelloAsso 0 <= 1.1.9