Medium severity6.1NVD Advisory· Published Mar 19, 2025· Updated Jun 17, 2026
CVE-2024-55009
CVE-2024-55009
Description
A reflected cross-site scripting (XSS) vulnerability in AutoBib - Bibliographic collection management system 3.1.140 and earlier allows attackers to execute arbitrary Javascript in the context of a victim's browser via injecting a crafted payload into the WCE=topFrame&WCU= parameter.
Affected products
2- AutoBib/AutoBib - Bibliographic collection management systemdescription
Patches
Vulnerability mechanics
References
3- medium.com/@r3dd1t/poc-cve-0b3ad0535631nvdExploitThird Party Advisory
- youtu.be/1mSgChs-a8QnvdExploit
- youtu.be/SHk3mdsd2mInvdExploit
News mentions
0No linked articles in our index yet.