CVE-2024-37846 Information

Description

MangoOS before 5.2.0 was discovered to contain a Client-Side Template Injection (CSTI) vulnerability via the Platform Management Edit page.

Reference

https://github.com/herombey/Disclosures/tree/main https://github.com/herombey/Disclosures/blob/main/CVE-2024-37846-CSTI.pdf