CVE-2024-26465 Information

Description

A DOM based cross-site scripting (XSS) vulnerability in the component /beep/Beep.Instrument.js of stewdio beep.js before commit ef22ad7 allows attackers to execute arbitrary Javascript via sending a crafted URL.

Reference

https://gist.github.com/cd80/89527424f733b2b82de876e02d163150