Security Advisory

CVE-2024-11922

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-28 20:57:37

Last updated 2025-04-28 22:27:53

Assigner Fortra

State PUBLISHED

Description

Missing input validation in certain features of the Web Client of Fortras GoAnywhere prior to version 7.8.0 allows an attacker with permission to trigger emails to insert arbitrary HTML or JavaScript into an email.

← Browse all CVEs View on cve.org ↗