CVE-2024-25807 Information

Description

Cross Site Scripting (XSS) vulnerability in Lychee 3.1.6 allows remote attackers to execute arbitrary code and obtain sensitive information via the title parameter when creating an album.

Reference

https://github.com/Hebing123/cve/issues/17