{"id":"CVE-2024-34794","details":"Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Tainacan.Org Tainacan allows Reflected XSS.This issue affects Tainacan: from n/a through 0.21.3.","modified":"2026-04-10T05:13:03.600598Z","published":"2024-06-03T11:15:09.917Z","references":[{"type":"ADVISORY","url":"https://patchstack.com/database/vulnerability/tainacan/wordpress-tainacan-plugin-0-21-3-cross-site-scripting-xss-vulnerability?_s_id=cve"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/tainacan/tainacan","events":[{"introduced":"0"},{"fixed":"7fc95777c79c52e6746eb038d5312cb533709a41"}],"database_specific":{"versions":[{"introduced":"0"},{"fixed":"0.21.4"}]}}],"versions":["0.1","0.11","0.12","0.13","0.13.1","0.14","0.14.1","0.14.2","0.15","0.15.2","0.16","0.16.1","0.16.2","0.16.3","0.17","0.17.1","0.17.2","0.17.3","0.17.4","0.18","0.18.1","0.18.10","0.18.2","0.18.3","0.18.4","0.18.5","0.18.6","0.18.7","0.18.8","0.18.9","0.19","0.19.1","0.19.2","0.19.3","0.20.0","0.20.1","0.20.2","0.20.3","0.20.4","0.20.5","0.20.6","0.20.7","0.20.8","0.21.0","0.21.1","0.21.2","0.21.3","0.3","0.7"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-34794.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"}]}