14Mar
CVE-2024-28251 | pinterest Querybook up to 3.31.x Websocket data authenticity (GHSA-5349-j4c9-x767)
A vulnerability was found in pinterest Querybook up to 3.31.x. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Websocket Handler. The manipulation leads to insufficient verification of data authenticity. This vulnerability is handled as CVE-2024-28251. The attack may be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.