QwikSec

Security Database

CVE

CWE

Training

CVE-2026-24474

Published: Jan 23, 2026

Modified: Jan 26, 2026

PUBLISHED

Description

Dioxus Components is a shadcn-style component library for the Dioxus app framework. Prior to commit 41e4242ecb1062d04ae42a5215363c1d9fd4e23a, `use_animated_open` formats a string for `eval` with an `id` that can be user supplied. Commit 41e4242ecb1062d04ae42a5215363c1d9fd4e23a patches the issue.

Vendor	Product	Versions
DioxusLabs	components	affected `< 41e4242ecb1062d04ae42a5215363c1d9fd4e23a`

Weaknesses (CWE)

References

https://github.com/DioxusLabs/components/security/advisories/GHSA-34pj-292j-xr69

x_refsource_CONFIRM

https://github.com/DioxusLabs/components/commit/41e4242ecb1062d04ae42a5215363c1d9fd4e23a

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

CVE-2026-24474 - Security Vulnerability | QwikSec