20Eyl
CVE-2024-45793 | lyft confidant up to 6.6.1 /v1/credentials cross site scripting (GHSA-rxq8-q85f-m866)
A vulnerability was found in lyft confidant up to 6.6.1. It has been rated as problematic. This issue affects some unknown processing of the file /v1/credentials. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2024-45793. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.