CVE-2024-49298

Publication date

2024-10-17 19:02:18

Family

Patchstack

State

PUBLISHED

Description

Improper Neutralization of Input During Web Page Generation (XSS or Cross-site Scripting) vulnerability in Pepro Dev. Group PeproDev Ultimate Invoice allows Stored XSS.This issue affects PeproDev Ultimate Invoice: from n/a through 2.0.6.