CVE-2024-34241

Publication date

2024-05-17 15:17:39

Family

mitre

State

PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in Rocketsoft Rocket LMS 1.9 allows an administrator to store a JavaScript payload using the admin web interface when creating new courses and new course notifications.