Critical severity9.6NVD Advisory· Published Feb 29, 2024· Updated Jun 17, 2026
CVE-2024-25292
CVE-2024-25292
Description
Cross-site scripting (XSS) vulnerability in RenderTune v1.1.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Upload Title parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- RenderTune/RenderTunedescription
Patches
Vulnerability mechanics
References
1- github.com/ji-zzang/EQST-PoC/tree/main/2024/RCE/CVE-2024-25292nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.