CVE-2024-39332 Information

Description

Webswing 23.2.2 allows remote attackers to modify client-side JavaScript code to achieve path traversal likely leading to remote code execution via modification of shell scripts on the server.

Reference

https://herolab.usd.de/security-advisories/usd-2024-0008/