Improper Neutralization of Input... CVE-2024-29217

- AV AC AU C I A
发布: 2024-04-21
修订: 2024-04-22

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Answer.This issue affects Apache Answer: before 1.3.0. XSS attack when user changes personal website. A logged-in user, when modifying their personal website, can input malicious code in the website to create such an attack. Users are recommended to upgrade to version [1.3.0], which fixes the issue.

0%
暂无可用Exp或PoC
当前有0条受影响产品信息