CVE-2023-24769

Published: Feb 17, 2023

Modified: Mar 18, 2025

PUBLISHED

Description

Changedetection.io before v0.40.1.1 was discovered to contain a stored cross-site scripting (XSS) vulnerability in the main page. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter under the "Add a new change detection watch" function.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/dgtlmoon/changedetection.io/issues/1358

https://www.youtube.com/watch?v=TRTpRlkU3Hc

https://www.edoardoottavianelli.it/CVE-2023-24769

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-24769

Description

Affected Products

References