CVE-2024-39126 Information

Description

Roundup before 2.4.0 allows XSS via JavaScript in PDF XML and SVG documents.

Reference

https://www.roundup-tracker.org https://www.roundup-tracker.org/docs/security.html#cve-announcements