29Mar
CVE-2024-29890 | DataLens prior 0.1449.0 Chart /charts/api/charts/v1/ cross site scripting (GHSA-6278-2wvc-4p93)
A vulnerability was found in DataLens. It has been declared as problematic. This vulnerability affects unknown code of the file /charts/api/charts/v1/ of the component Chart Handler. The manipulation leads to cross site scripting. This vulnerability was named CVE-2024-29890. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.