CVE-2024-29271

Publication date

2024-03-22 00:00:00

Family

mitre

State

PUBLISHED

Description

Reflected Cross-Site Scripting (XSS) vulnerability in VvvebJs before version 1.7.7, allows remote attackers to execute arbitrary code and obtain sensitive information via the action parameter in save.php.