VYPR
Unrated severityNVD Advisory· Published Mar 1, 2024· Updated Aug 15, 2024

CVE-2024-24512

CVE-2024-24512

Description

Cross Site Scripting vulnerability in Pkp OJS v.3.4 allows an attacker to execute arbitrary code via the input subtitle component.

Affected products

2
  • Pkp/Ojscpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=3.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.