OpenObserve Fixes Cross-Site Scripting Vulnerability
CVE-2024-41809
6.1MEDIUM
What is CVE-2024-41809?
OpenObserve is an open-source observability platform. Starting in version 0.4.4 and prior to version 0.10.0, OpenObserve contains a cross-site scripting vulnerability in line 32 of openobserve/web/src/views/MemberSubscription.vue. Version 0.10.0 sanitizes incoming html.
Affected Version(s)
openobserve >= 0.4.4, < 0.10.0