Vulnerability CVE-2024-45856
Published: 2024-09-12

Description:
A cross-site scripting (XSS) vulnerability exists in all versions of the MindsDB platform, enabling the execution of a JavaScript payload whenever a user enumerates an ML Engine, database, project, or dataset containing arbitrary JavaScript code within the web UI.

 References:
https://hiddenlayer.com/sai-security-advisory/2024-09-mindsdb/
Copyright 2026, cxsecurity.com

 

Back to Top