Is tltneon/lgsl affected by CVE-2024-56361?

Packagist tltneon/lgsl is affected in <7.0.0.

Is CVE-2024-56361 being exploited?

Not on the CISA KEV list. EPSS exploit probability is 0.4%.

high

CVE-2024-56361

Q: Is CVE-2024-56361 being exploited?

Not on the CISA KEV list. EPSS exploit probability is 0.4%.

Packagist · tltneon/lgsl

Summary

lgsl Stored Cross-Site Scripting vulnerability

Severity: high
EPSS: 0.4% (p34)
Also known as: GHSA-xx95-62h6-h7v3
Published: 2024-12-26

References

https://github.com/tltneon/lgsl/security/advisories/GHSA-xx95-62h6-h7v3
https://github.com/tltneon/lgsl/commit/3fbd3bb581b636f7fd3ea0592c5f8df87d3a2843
https://github.com/tltneon/lgsl

Related advisories

CVE-2024-56517 — medium · Packagist/tltneon/lgsl

Is your project exposed to this? Stateward checks every dependency on every pull request and flags it only if your code actually reaches it.

Check my repo

Summarize with AI

ChatGPT Claude Perplexity

Sources: CISA KEV (public domain), OSV.dev & GitHub Advisory Database (CC-BY-4.0), FIRST EPSS, NVD/CWE (public domain). Served live from the Stateward advisory database.