CVE-2024-24507 Information

Description

Cross Site Scripting vulnerability in Act-On 2023 allows a remote attacker to execute arbitrary code via the newUser parameter in the login.jsp component.

Reference

https://gist.github.com/Xandsz/2b409acb81e846fc3478600f984785a1