Security Advisory

CVE-2024-49642

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-29 08:50:21
Last updated 2026-04-28 16:10:26
Assigner Patchstack
State PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability in rafasashi Todo Custom Field todo-custom-field allows Reflected XSS.This issue affects Todo Custom Field: from n/a through <= 3.0.4.