CVE-2024-29271 Information

Mar 23, 2024 cve

Description

Reflected Cross-Site Scripting (XSS) vulnerability in VvvebJs before version 1.7.7 allows remote attackers to execute arbitrary code and obtain sensitive information via the action parameter in save.php.

Reference

https://github.com/givanz/VvvebJs/issues/342 https://github.com/givanz/VvvebJs/commit/c0c0545b44b23acc288ef907fb498ce15b9b576e

Share on: