CVE-2024-48535 Information

Description

A stored cross-site scripting (XSS) vulnerability in eSoft Planner 3.24.08271-USA allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.

Reference

https://github.com/esoft-planner-cve/esoft_planner_cve